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1.  Fight. 

But  there's  no  shame  in  running.  The  Cyclops  plans  to  kill  you,  tear 
you  to  pieces,  and  eat  you.  Survival  is  job  number  one. 


Z.  Drive  him  to  tears. 

Start  chopping  onions,  and  tell  him  it's  for  a  batch  of  your 
award-winning  chili.  He'll  be  too  bleary-eyed  to  fight. 


3.  Give  him  an  eye  test. 

Tell  him  he'll  need  a  monocle,  which  you  happen  to  have  in  the 
back  room,  then  simply  slip  out  the  back. 


4.  Use  the  classics. 

A  banana  peel,  strategically  placed,  is  still  hard  to  beat.  Lure  the 
Cyclops  to  his  slippery  doom,  then  run. 


5,  The  flashlight  gambit. 

A  bright  light  shined  into  his  retina  may  blind  him  long  enough  to 
afford  your  escape.  It  might  also  just  make  him  angrier,  so  be  careful 


D.  Show  a  little  tenderness. 

Maybe  the  Cyclops  is  sensitive  about  his  frankly  odd  looks.  Maybe 
that's  why  he's  so  angry.  Try  a  hug. 


beating  back  security  threats,  easier. 


1.  Implement  Microsoft  Forefront. 

Forefront  makes  defending  your  systems  easier.  It's  a  comprehensive,  simple- 
to-use,  integrated  family  of  products  that  helps  provide  protection  across  your 
client,  server,  and  network  edge.  For  case  studies,  free  trials,  demos,  and  all  the 
latest  moves,  visit  easyeasier.com 

Forefront  is  business  security  software  for  client,  server,  and  the  network  edge. 
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New  Intel*  Centrino*  Z  with  vPro™  technology  operates  at  the  hardware 
level  to  let  you  remotely  and  wirelessly  diagnose,  repair  and  reconnect  PCs  to 
the  network.  Even  when  the  user's  notebook  is  off  or  the  OS  is  inoperable^ 


Centrino' 2 


INTRODUCING  Intel®  Centrino®  2 
with  vPro"1  technology.  Greatly 
reduced  maintenance  visits* 
That's  IT  as  it  should  be. 


IV: 


‘Results  shown  are  from  the  2007  EOS  Case  Studies  with  Intel*  Centrino'  Pro  processor  technology,  3rd  party  audit  commissioned  by  Intel,  of  various  enterprise  IT  environments  and  may  not  be 
representative  of  the  results  that  can  be  expected  for  smaller  businesses.  The  studies  compare  test  environments  of  Intel*  Centrino’  Pro  processor  technology  equipped  PCs  vs  non-Intel*  Centrino* 
Pro  processor  technology  environments.  Tested  PCs  were  in  multiple  OS  and  power  states  to  mirror  a  typical  working  environment.  Actual  results  may  vary.  Visit  intel.com/vpro  and  eds.com 
“Remote  manageability  requires  the  computer  system  to  have  an  Intel*  AMT-enabled  chipset,  network  hardware  and  software,  and  a  connection  with  a  power  source  and  corporate  network 
connection.  Setup  may  require  configuration  and  equipment  or  integration.  Intel  AMT  may  not  be  available  or  certain  capabilities  may  be  limited  depending  on  system  state.  Visit  intel.com/technology/ 
platform-technology/intel-amt  ©ZOOS  Intel  Corporation.  Intel,  the  Intel  logo,  Centrino  logo,  Centrino,  and  vPro  are  trademarks  of  Intel  Corporation  in  the  United  States  and  other  countries. 


m  EDITOR’S  NOTE 

Don  Tennant 

Standing  on  Principle 


I’M  NOT  above  engaging  in  a  little  shameless  name- 
dropping,  especially  when  I  know  the  dropped  name 
will  spark  a  reaction.  So  while  chatting  with  attendees  at 
the  LinuxWorld  conference  in  San  Francisco  last  week, 

I  made  no  secret  of  the  fact  that  I  had  interviewed  Richard 
Stallman  a  few  days  earlier.  I  marveled  at  the  awe  and  admira¬ 
tion  on  the  faces  of  many  of  my  listeners. 


The  irony  is  that  the 
subject  of  their  veneration 
is  a  thorn  in  the  side  of  the 
open-source  community. 
Stallman  has  long  disas¬ 
sociated  himself  from  any 
endeavor  that  promotes 
the  operating  system  com¬ 
monly  known  as  Linux 
without  calling  it  by  what 
he  feels  very  strongly  is  its 
proper  name:  GNU/Linux. 

Stallman  started  the 
free  software  movement 
in  the  early  ’80s  when  he 
launched  the  GNU  Project 
and  established  the  Free 
Software  Foundation, 
an  organization  that  he 
still  heads.  While  many 
in  the  open-source  com¬ 
munity  revere  Stallman 
for  the  role  he  played  in 
giving  birth  to  the  concept 
of  freely  sharing  source 
code  to  develop  software, 
the  free  software  (think 
“free”  as  in  freedom,  not 
as  in  no  cost)  and  open- 
source  camps  have  taken 
divergent  philosophical 
paths.  Whereas  the  open- 
source  community  is  will¬ 
ing  to  coexist  peacefully 
with  makers  of  propriety 
software,  Stallman  and 


other  free-software  pur¬ 
ists  insist  that  proprietary 
software  is  unethical  and 
unjust  and  must  not  be 
tolerated. 

I  found  out  just  how  ada¬ 
mant  Stallman  is  on  the 
matter  when  I  met  with 
him  at  MIT.  On  the  table 
in  a  small  room  outside 
his  office  was  a  laptop  that 
could  easily  be  mistaken 
for  a  toy.  I  recognized  it  as 
the  product  of  One  Laptop 
Per  Child,  the  Nicholas 
Negroponte  project  to  pro¬ 
vide  very-low-cost  com¬ 
puters  to  schoolchildren. 

“I  decided  to  switch  to 
one  of  these  last  Novem¬ 
ber  because  it  has  a  free 
BIOS  program,  and  no 
other  laptop  in  the  world 
that  I  knew  of  was  avail¬ 
able  without  a  proprietary 
BIOS  program,”  Stall- 
man  said.  “It  took  several 
months  to  arrange  for  us 
to  get  a  machine,  and  then 

■  It’s  better  not 
to  use  computers 
than  to  use  pro¬ 
prietary  software,’ 
Stallman  said. 


for  me  to  switch  to  it.  As 
I  was  switching,  in  April, 
the  head  of  that  project 
announced  his  betrayal  of 
our  community.” 

That  “betrayal”  was  Ne- 
groponte’s  decision  to  run 
Windows  on  OLPC  laptops. 

“The  machine’s  sup¬ 
posed  to  lead  millions 
of  children  to  freedom,” 
Stallman  said.  “But  instead 
I  fear  it  will  lead  millions 
of  children  under  the  do¬ 
minion  of  Microsoft.” 

When  I  suggested  that 
adopting  Windows  was 
likely  to  make  the  OLPC 
machines  more  pervasive, 
Stallman  bristled. 

“It’s  completely  mis¬ 
guided  to  try  to  make 
something  a  big  success  if 
it’s  doing  a  bad  thing,”  he 
said.  “Proprietary  software 
subjugates  the  user.  It’s  an 
injustice.  And  the  idea  that 
it’s  good  to  get  people  using 
computers  regardless  of  ev¬ 
erything  else  is  shallow  and 
misguided.  It’s  better  not 
to  use  computers  than  to 
use  proprietary  software.” 

Most  everyone  who 
would  ever  read  or  hear 
that  statement  would  find 


it  a  little  over  the  top,  or 
maybe  even  over  the  top 
and  way  down  the  other 
side.  I,  for  one,  have  no 
problem  with  proprietary 
software,  and  I’m  comfort¬ 
able  that  the  remarkable 
accomplishments  and 
benefits  that  have  been 
achieved  by  computers 
running  proprietary  soft¬ 
ware  speak  for  themselves. 

Yet  I  find  myself  unwill¬ 
ing  to  write  Stallman  off  as 
some  anachronistic  zealot. 
In  fact,  I  respect  him. 

He  went  on  to  say  that 
he’s  switching  from  the 
OLPC  unit  to  a  machine 
made  by  Chinese  company 
Jiangsu  Lemote  Technol¬ 
ogy  that  can’t  run  Win¬ 
dows  because  of  the  chip 
it  uses.  Unfortunately,  it 
doesn’t  have  a  suspend- 
and-resume  capability, 
which  Stallman  called 
“somewhat  inconvenient.” 
Nor  does  the  battery  charge 
while  it’s  running,  which  he 
called  “an  annoyance.” 

“But  it’s  worth  it  to  you,” 
I  said. 

“For  freedom,”  he  re¬ 
sponded,  “I  will  make  a 
sacrifice.” 

Not  enough  of  us  are 
willing  to  truly  sacrifice 
for  the  principles  we  be¬ 
lieve  in.  If  for  no  other 
reason  than  that,  Stallman 
has  earned  the  admiration 
he  has  inspired.  ■ 

Don  Tennant  is  editorial 
director  of  Computerworld 
and  InfoWorld.  Contact 
him  at  don_tennant@ 
computerworld.com,  and 
visit  his  blog  at  http:// 
blogs.computerworld.com/ 
tennant. 
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RESPONSES  TO: 

Reconsidering  Vista 

July  28, 2008 

I  very  much  doubt  ordinary  users 
have  much  say  about  which  OS 
they  use  at  work.  Business  IT  is 
about  applications,  not  operating 
systems.  Even  if  users  have  Vista  at 
home,  they  know  the  OS  at  work  is 
not  about  bling  and  glitz,  but  about 
stability,  reliability,  responsiveness 
and  getting  tasks  done. 

Many  corporations  have  decided 
that  Vista  is  too  flaky,  incompatible 
and  requires  too  much  professional 
IT  intervention  to  make  it  worth¬ 
while  upgrading  to  in  the  near 
future.  XP  will  be  the  business  gold 
standard  for  years  to  come.  At  least 
that’s  what  we’ve  decided. 

We’re  waiting  to  see  what  hap¬ 
pens  with  Win  7.  IT  can  continue 
to  play  with  Vista,  but  we’re  not 
allowed  to  let  it  anywhere  near 
our  users.  And  frankly,  as  an  IT 
guy,  for  once  I  agree  with  manage¬ 
ment.  Vista  has  been  pretty  much 
a  nightmare  to  roll  out  because  of 
its  incompatibilities.  Skipping  Vista 
completely  allows  us  to  plan  prop¬ 
erly  for  Win  7. 

■  Submitted  by:  Andrew  S. 


Certainly  Vista  is  not  for  every¬ 
one.  But  the  conventional  wisdom 
—  trumpeted  by  a  cacophony  of 
loud  voices  online  —  seems  to  be 
that  no  one  should  use  Vista  under 
any  circumstances.  Ever. 

I  think  that  total  indictment  of  the 
operating  system  is  a  bit  extreme. 
I’m  afraid  I  just  can’t  run  with  the 
herd  this  time.  Can  you? 

■  Submitted  by:  Robert  L.  Mitchell, 
author  of  the  column 

I  have  not  been  hearing  this  “con¬ 
ventional  wisdom”  since  SP1  came 
out,  but  I  don’t  run  in  the  same 
circles  as  the  author,  so  maybe  it’s 
still  out  there  somewhere.  But  Vista 
does  have  its  place  as  a  home  OS, 
assuming  your  hardware  and  favor¬ 
ite  programs  have  Vista  support. 

But  when  you  support  clients  run¬ 
ning  SBS2003  and  Vista  refuses  to 
see  their  network  shares,  won’t  con¬ 
nect  their  printers  properly  and  has 
fits  with  the  log-in  scripts,  then,  yes, 
there  is  a  real  problem  with  Vista  in 
the  business  environment. 

■  Submitted  by:  Anonymous 


JOIN  THE  CHATTER!  You,  too,  can 
comment  directly  on  our  stories, 
at  computerworld.com. 
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CYBERCRIME 

DO  J  Fingers  Global  Ring 
In  Alleged  Data  Thefts 


A  MULTINATIONAL 
ring  of  hackers  that 
allegedly  stole  tens 
of  millions  of  credit 
and  debit  card  numbers 
from  U.S.  retailers  used 
wardriving  and  sophisti¬ 
cated  programming  skills  to 
exploit  network  and  system 
vulnerabilities,  according  to 
the  federal  government. 

Then  the  group  encrypted 
the  stolen  data,  stored  it  on 
compromised  servers  and 
sold  it  for  millions  of  dollars 
through  underground  Web 
sites,  the  Department  of  Jus¬ 
tice  claimed  in  court  docu¬ 
ments  filed  last  week.  The 
hackers  also  used  the  data  to 
withdraw  thousands  of  dol¬ 


lars  at  a  time  from  ATMs, 
the  DOJ  said.  It  added  that 
they  covered  their  tracks  by 
channeling  funds  through 
bank  accounts  in  Eastern 
Europe  and  kept  in  touch 
with  one  another  via  instant 
messaging  and  e-mail. 

The  scheme  is  a  prime  ex¬ 
ample  of  the  highly  organized 
efforts  that  attackers  are  now 
mounting,  said  Ted  Julian,  a 
vice  president  at  Application 
Security  Inc.,  which  sells 
database  monitoring  tools. 

“The  hackers  are  much 
more  focused,  and  they’ll 
try  38  doors,  they’ll  try  100 
doors,”  Julian  said.  “As  soon 
as  they  find  the  one  that’s 
unlocked,  they’re  on  the 


THE  WEEK  AHEAD 

MONDAY:  The  Siggraph  2008  computer  graphics  confer¬ 
ence  starts  in  Los  Angeles;  Intel  plans  to  detail  the  architec¬ 
ture  of  Larrabee,  its  upcoming  “many-core”  processor. 

TUESDAY:  Microsoft  is  scheduled  to  release  its  monthly 
batch  of  security  fixes  - 12  in  all,  seven  of  them  with 
“critical”  severity  ratings  (see  related  story,  below). 

FRIDAY:  The  U.S.  Census  Bureau  issues  its  report  on  retail 
e-commerce  sales  during  this  year’s  second  quarter. 


way  to  the  database.” 

The  group  of  11  people 
allegedly  got  inside  the  net¬ 
works  of  TJX,  OfficeMax 
and  other  retailers  via  un¬ 
secured  wireless  networks 
that  they  found  during  war¬ 
driving  excursions.  They 
then  installed  packet-sniffer 
software  and  launched  SQL 
injection  attacks,  according 
to  the  court  documents. 

In  a  May  indictment  of 
some  of  the  same  people  in 
connection  with  data  thefts 
from  the  Dave  &  Buster’s 
restaurant  chain,  prosecutors 
said  researchers  at  the  CERT 
Coordination  Center  de¬ 
scribed  the  sniffer  software 
as  “well-designed,”  with 
features  “that  reflect  college- 
level  knowledge  of  comput¬ 
er  programming  skills.” 

And  the  alleged  thieves 
were  tenacious:  When  they 
failed  to  break  into  a  Mary¬ 
land  restaurant’s  server, 
they  infiltrated  the  chain’s 
corporate  network  and  in¬ 
stalled  packet  sniffers  at  11 
restaurants,  the  DOJ  said. 

Graham  Cluley,  a  consul¬ 
tant  at  Sophos  PLC,  said  the 
compromised  retailers  need¬ 
ed  to  tighten  their  security. 
But,  he  added,  companies 
that  weren’t  hit  “shouldn’t 
be  feeling  too  smug,  because 
how  many  of  them  can  say, 
‘This  could  never  happen 
inside  our  organization’?” 

—  Patrick  Thibodeau, 
with  Grant  Gross 
of  the  IDG  News  Service 


SECURITY 

Microsoft  to 
Rate  Exploit 
Potential 

MICROSOFT  CORP.  will  soon 
edge  into  the  crystal-ball 
business  in  its  security 
bulletins  by  predicting  how 
likely  it  is  that  software 
flaws  will  be  exploited. 

Starting  in  October,  Micro¬ 
soft  will  add  an  “Exploitabil- 
ity  Index”  that  gives  bugs 
one  of  three  ratings,  based 
on  the  likelihood  that  attack¬ 
ers  will  be  able  to  develop 
code  to  take  advantage  of 
the  flaws  (see  box). 


Consistent  xploit 
code  likely. 

Inconsistent  explo 
code  likely. 

Functioning  exploi 
code  unlikely. 


Microsoft  will  also  give 
technical  info  about  new 
vulnerabilities  to  select 
security  vendors  before  it 
issues  patches,  to  give  them 
a  head  start  in  crafting 
exploit-detection  signatures. 

Andrew  Cushman,  the 
software  vendor’s  director 
of  security  response  and 
outreach,  acknowledged 
that  the  data-sharing  plan 
“takes  some  people  at  Mi- 
croson  outsiae  tnsir  comfort 

IawaI  vv  Dill  |%A  nAlAJ  aMaaL 

level*  DUtf  no  notea,  stidCK 
coae  often  nits  tne  street 
Just  hours  after  new  bugs 
are  disclosed  publicly. 

-  Gregg  keizer 
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UPTIME  COMES  STANDARD. 


*  -  v . 


inside' 


Powerful. 

Efficient. 


IBM  System  x3550  Express 

■ 

_ $2,205 


OR  S56/MONTH  FOR  36  MONTHS1 

IBM  System  x3550™  Express.  It’s  designed  to  stay  up  and 
running  and  help  reduce  system  downtime.  In  fact,  it  can 
even  identify  a  potential  problem  before  it  becomes  one. 
And  if  you  ever  have  to  replace  a  component,  you  can  do 
that  without  having  to  shut  down.  Just  one  more  way  the 
x3550  Express  keeps  downtime  down. 

From  the  people  and  Business  Partners  of  IBM. 

It’s  innovation  made  easy. 


RUN  YOUR  CRITICAL  APPLICATIONS  WITH  CONFIDENCE. 


PN:  7978EJU _ __ _ 

Featuring  up  to  two  Quad-Core  Intel®  Xeon®  Processors  E5430  2.66GHz 
Hot-swap  redundant  cooling  for  high  availability 
Includes  IBM  Director  and  PowerExecutive  to  help  manage  power 
consumption,  increase  uptime,  reduce  costs  and  improve  productivity 
3-year  on-site  limited  warranty2  on  parts  and  labor 


IBM  SYSTEM  STORAGE™ 
DS3400  EXPRESS  KIT 

$13,793 

OR  S352/M0NTH  FOR  36  MONTHS' 


PN:  1726-42U 


IBM  TIVOLI®  CONTINUOUS  DATA  PROTECTION  FOR  FILES 

$42  per  user 


PN:  D613ALL 


All-in-one  kit  makes  it  easier  to  migrate  from  your  DAS  network  to  SAN 
Includes  IBM  System  Storage  DS3400  Dual  Controller,  four  IBM  Emulex  42C2069 
4Gb/s  PCI  Express  HBAs,  Brocade  SAN  8  Port  Fibre  Channel  switch  (16  total 
ports),  twelve  4Gb/s  SFPs,  and  eight  5-meter  optical  LC  cables 
Emulex  EZ  Pilot™  installation/management  software  included 


Save  and  recovery  technology  enables  file  recovery  to  any  point  in  time 
Continuous  Data  Protection  (CDP)  protects  your  data  from  the  aftermath  of  a  virus 
attack  or  user  error 

Up  to  3  backup/replication  areas  help  protect  against  corruption,  file  loss  or 
system  loss 


COMPLIMENTARY  SYSTEMS  ADVISOR  TOOL 

=  =-£  =£=  express 

Want  to  find  the  right  server  or  storage  system  for  you? 

-=-=-=■=7=-,  advantage™ 

Our  Systems  Advisor  Tool  can  help.  Just  give  the  tool  a  little 

input,  and  it  will  identify  products  that  can  help  meet  your 

ibm.com/systems/uptime 

business  needs.  Get  started  now  at  ibm.com/systems/uptime 

1  866-872-3902  (mention  6N3AH04A) 

1 .  IBM  Global  Financing  offerings  are  provided  through  ISM  Credit  LLC  in  the  United  States  and  other  IBM  subsidiaries  and  divisions  worldwide  to  qualified  commercial  and  government  customers.  Monthly  payments  provided  are  tor  planning  purposes 
only  and  may  vary  based  on  your  credit  and  other  (actors  Lease  otter  provided  is  based  on  an  FMV  lease  of  36  monthly  payments.  Other  restrictions  may  apply.  Rates  and  offerings  am  subject  to  change,  extension  or  withdrawal  without  notice. 

2.  IBM  hardware  products  are  manufactured  horn  new  parts,  or  new  and  serviceable  used  parts.  Regardless,  our  warranty'  terms  apply.  For  a  copy  of  applicable  product  warranties,  visit  ibm.com/servers/suppor!  machine_warranties  or  write  to:  Warranty 
Information,  P.0  Box  12195,  RTR  NC  27709.  Attn:  Dept.  JDJA/B203  IBM  makes  no  representation  or  warranty  regarding  third-party  products  or  services,  including  those  designated  as  ServerProven*  or  ClusterProven?  Telephone  support  may  be  subject 
to  additional  charges.  For  on-site  labor,  IBM  will  attempt  to  diagnose  and  resolve  the  problem  remotely  before  sending  a  technician  On-site  warranty  is  available  only  lor  selected  components  Optional  same-day  service  response  is  available  Ion  select 
systems]  a!  an  additional  charge  IBM,  the  IBM  logo.  IBM  Express  Advantage,  System  x  and  System  Storage  are  trademarks  ot  International  Business  Machines  Corporation  in  the  United  States  and/or  other  countries.  For  a  complete  list  ot  IBM  Trademarks, 
see  ibm.com/legal/copytrade  shtml.  Intel,  ttie  Intel  logo,  Xeon  and  Xeon  Inside  are  trademarks  or  registered  trademarks  of  Intel  Corporation  in  the  U.S.  and  other  countries.  All  other  products  may  be  trademarks  or  registered  trademarks  ot  their  respective 
companies.  All  prices  and  savings  estimates  ate  based  upon  IBM's  estimated  retail  selling  prices  as  o!  03/24/2008.  Prices  and  actual  savings  may  vary  according  to  configuration.  Resellers  set  their  own  prices,  so  reseller  prices  and  actual  savings  to  end 
users  may  vary.  Products  are  subject  to  availability.  Ibis  document  was  developed  for  offerings  in  the  United  States  IBM  may  not  otter  the  products,  features,  or  services  discussed  in  this  document  in  other  countries.  Prices  are  subject  to  change  without 
nonce  Starting  price  may  not  include  a  lard  drive,  operating  system  or  other  features.  Contact  your  IBM  representative  or  iBM  Business  Partner  for  the  most  current  pricing  in  your  geographic  area  ©  2008  IBM  Corporation.  All  rights  reserved. 
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INTERNET 

Exxon  Mobil 
Appears 
On  Twitter, 
Unwittingly 

Claiming  TO  be  an 
Exxon  Mobil  Corp. 
employee,  a  user  of 
the  Twitter  microblogging 
site  created  a  page  on 
July  28  with  the  company’s 
name,  part  of  its  logo  and 
photos  of  an  Exxon  gas  sta¬ 
tion.  As  of  last  week,  more 
than  400  other  users  had 
signed  up  to  receive  the 
messages  being  posted  by 
“Janet  at  ExxonMobil.” 

But  Exxon  Mobil  said 
that  it  hadn’t  authorized 
the  activities  on  Twitter 
and  doesn’t  know  who  Ja¬ 
net  is  or  if  she  or  he  really 
does  work  at  the  company. 

Whoever  is  posting  the 
messages  “is  not  an  autho¬ 
rized  person  to  speak  on 
behalf  of  the  company,”  said 
Exxon  Mobil  spokesman 
Alan  Jeffers.  He  added  that 
Exxon  Mobil  hasn’t  official¬ 
ly  started  using  any  social 
networking  sites  to  com¬ 
municate  with  customers. 

Jeffers  said  that  after  be¬ 
coming  aware  of  the  page 


Hey  there!  ExxonMobilCorp  is  using 
Twitter. 

Twitter  Is  a  free  service  that  lets  you  keep  in  touch  with 
people  using  the  web.  your  phone,  or  IM.  Join  today  to  start 
receiving  ExxonMobiiCorp's  updates. 


ExxonMobilCorp 


I 

5s 

i 

5s 

! 

s 

jjgg  @m»(es38,  we  are  not  an  earth  hating  organization,  and  we're  working  on 


March  or  login  /  join  Twitter' 


Select  Language 


@AndrewDavies,  I  am  an  employee  of 
ExxonMobil,  who  has  decided  to  put 
forward  her  pride  in  her  own  company. 

2  days  ago  from  web  in  reply  to  AndrewDavies 

(aerikkreis,  indeed  we  date  as  far  back  as  Standard  Oil,  with  Rockefeller  as 
the  very  founder!  We  did  not  have  any  association  with  the  Nazis  07  $8  am 

August  05,  2008  from  web  In  reply  to  ErikKreis 

@?tim patterson,  would  you  mind  expanding  on  your  feelings  with  some 
specific  reasons?  07  48  AM  August  05.  2008  from  web  in  reply  to  timpattersofi 


created  by  Janet,  Exxon 
Mobil  contacted  officials  at 
Twitter  Inc.  and  asked  them 
to  reserve  for  the  company’s 
use  any  potential  account 
names  associated  with  its 
various  business  brands. 
The  Twitter  execs  agreed  to 
do  so,  according  to  Jeffers. 

As  of  Friday,  the  unau¬ 
thorized  page  was  still  live, 
and  Janet  had  begun  post¬ 
ing  new  messages,  after  a 
two-day  absence. 

The  tenor  of  the  posts 
seems  to  be  positive  toward 
Exxon  Mobil.  But  some 
have  been  political,  and 
others  controversial,  such 
as  one  that  seemed  to  mini¬ 
mize  the  1989  Exxon  Valdez 
oil  spill.  Jeffers  said  the 
messages  also  contained 
“several  inaccuracies,”  from 
the  company’s  standpoint. 

Forrester  Research  Inc. 


analyst  Jeremiah  Owyang 
said  in  a  blog  post  that 
companies  need  to  track 
Twitter  and  other  Web  2.0 
sites  to  make  sure  that  they 
don’t  get  “brand-jacked.” 
Businesses  “should  be 
monitoring  the  discussion 
and  [uses]  of  their  key¬ 
words  in  social  networks 
—  failure  to  do  so  results 
in  becoming  case  studies,” 
Owyang  wrote. 

Shel  Holtz,  principal  of 
Holtz  Communication  + 
Technology,  a  consulting 
firm  that  focuses  on  cor¬ 
porate  communications  on 
the  Web,  agreed  in  his  blog 
that  the  Janet  case  should 
be  a  wake-up  call  for  cor¬ 
porate  officials.  “Far  too 
many  organizations  shrug 
off  emerging  social  media 
channels,”  he  wrote. 

—  Heather  Havenstein 


Orae;  released 
an  emergency  patch  to 
plug  a  security  hole  in  its 
WebLogic  software,  one 
week  after  warning  users 
of  the  flaw.  Oracle,  which 
typically  issues  patches 
on  a  quarterly  basis,  gave 
the  flaw  a  10.0  rating  -  the 
highest  available  -  under 
the  Common  Vulnerability 
Scoring  System. 

said 

Friday  that  it  had  blocked 
links  between  its  social 
networking  Web  site  and 
malware-infested  sites 
that  malicious  hackers 
were  trying  to  lure  Face- 
book  meml  >  to  visit. 

The  attackers  posted  fake 
messag  >  urging  users  to 
click  on  a  link  for  a  video. 

and 

other  firewall  vendors 
are  scrambling  to  fix  a 
problem  that  can  limit  the 
effectiveness  of  server 
software  patches  being 
issued  f  r  a  critical  flaw  m 
the  Domain  Name  System 
protocol.  Dan  Kaminsky, 
the  researcher  who  dis¬ 
covered  the  DNS  flaw, 
said  he  and  others  had  un- 
erestimatedt  e  number 
of  firewalls  deployed  in 
front  of  DNS  servers. 


SECURITY 


IT  Security  Oversight  May 
Have  Enabled  Data  Breacn 


A  FORMER  EMPLOYEE  accused 
of  stealing  customer  data  from 
Countrywide  Financial  Corp. 
may  have  been  able  to  down¬ 
load  the  information  to  a  thumb 
drive  because  of  an  oversight 
by  the  home  mortgage  lender’s 
IT  department. 

Rene  Rebollo,  a  former  finan¬ 
cial  analyst  at  Countrywide,  was 
arrested  Aug.  1  in  Pasadena, 


Calif.,  for  allegedly  stealing  and 
selling  the  data,  which  included 
names.  Social  Security  num¬ 
bers  and  contact  information. 

According  to  affidavits  bled  in 
U.S.  District  Court  in  Los  Ange¬ 
les,  Rebollo  told  FBI  agents  that 
most  of  the  computers  in  the  of¬ 
fice  where  he  worked  had  a  se¬ 
curity  feature  that  prevented  the 
use  of  thumb  drives  -  but  he  had 


found  one  system  that  didn’t. 

He  estimated  that  he  down¬ 
loaded  about  20,000  customer 
profiles  weekly  over  two  years, 
according  to  the  affidavits. 

Bank  of  America  Corp.,  which 
acquired  Countrywide  last 
month,  didn’t  respond  to  multi¬ 


ple  requests  for  comment  about 
the  data  thefts  and  the  lender’s 
IT  security  practices. 

Pat  Clawson,  chairman  and 
CEO  of  Lumension  Security  Inc., 
said  companies  should  scan  all 
network  devices  to  ensure  that 
security  controls  are  in  place. 

Some  organizations  have  tak¬ 
en  far  more  Draconian  steps,  he 
noted,  citing  federal  agencies 
that  filled  USB  ports  with  glue 
to  keep  them  from  being  used. 

-  NANCY  60HRING, 
IDG  NEWS  SERVICE 
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surging  stocks 
storm  co  ring 
28  “ur  tent”  e-mails 
present  itk  m.e  ><  ip 
ninth-inning  upset 
last-minute  e-cards 
eleventh-hour  assignment 
'ty  hospitalization 
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What  are  you  missing  right  now? 

Keep  the  best  of  the  Web  i/i  th  you  on  the 
nation’s  larg<  st  mobile  broadband  network. 
Just  plug  it  into  your  laptop  and  go. 


Free 


Sierra  Wireless  Compass  597 
Requires  eligible  upgrade  (or  new  service 
activation }  on  a  business  account,  data  plan 
and  two-year  agreement. 


Internet  to  go.  Only  on  the  Now  Network. 


sprint  com/mobilebroadband 


Largest  claim  based  on  total  network  size  (sq.  miles).  May  require  up  to  a  $36  activation  fee/iine,  credit  approval  and  deposit.  $200  early  termination  fee/line  applies.  Mobile  Broadband  Card  Offer: 
Offer  ends  12/31/08.  While  supplies  last.  Requires  activation  at  the  time  of  purchase.  Available  for  corporate-liable  accounts  (activations  using  a  business  name  and  tax  ID)  only.  Upgrade:  Existing 
customers  in  good  standing  with  service  on  the  same  device  for  more  than  22  consecutive  months  currently  activated  on  a  service  plan  of  $34.99  or  higher  may  be  eligible.  See  in-store  rebate  form  or 
sprint.com/upgrade  for  details.  Pricing,  offer  terms,  fees  and  features  may  vary  for  existing  customers  not  eligible  for  upgrade.  Mobile  broadband  card  data  plan  required.  See  sprint.com/coverage  for 
details.  Other  Terms:  Offers  not  available  in  all  markets/retail  locations  or  for  all  phones/networks.  Sprint  Mobile  Broadband  Network  reaches  over  248  million  people  (including  data  roaming).  Not 
available  in  all  markets/retail  locations.  Other  restrictions  apply.  See  store  or  sprint.com  for  details.  ©2008  Sprint. 
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BETWEEN  THE  LINES 


By  John  Klossner 


WEB  2.0 


‘Politics  2.0’  Heatincj  Up 
Summer  Doldrums  in  D.C. 


JULY  AND  august  are 
often  quiet  months 
in  Washington.  This 
year,  though,  they’ve  been 
anything  but  dull  from  an 
IT  standpoint,  with  mem¬ 
bers  of  Congress,  backers  of 
both  presidential  candidates 
and  organizers  of  the  up¬ 
coming  presidential  debates 
all  ramping  up  their  use  of 
Web  2.0  tools. 

Last  week,  for  example, 
the  Commission  on  Presi¬ 
dential  Debates  (CPD)  and 


TK*  Ai.  ss-»sut$5£  H  VO  YH* 
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COMING  SOON 


Barack  Obama,  GOP  politi¬ 
cians  now  recognize  the 
advantages  of  using  social 
networking  technologies. 

In  another  example,  the 
Republican  National  Com¬ 
mittee  on  July  29  launched 
a  Facebook  parody  called 
BarackBook  that  tries  to  dis¬ 
credit  Obama  by  identifying 
as  his  “friends”  people  who 
may  reflect  badly  on  his 
presidential  bid. 

Not  to  be  outdone,  the 
Obama  campaign  recently 
■■■■■EBB  began  posting 
policy  papers 
on  a  Web  site 
called  Scribd, 
which  has  been 
described  as  a 
“YouTube  for 
documents.” 

—  Heather 
Havenstein 


MySpace  Inc.  said  they’re 
launching  a  Web  portal  that 
will  provide  live  streaming 
of  this  year’s  debates. 

And  after  each  one, 
the  MyDebates.org  portal 
will  offer  bookmarked  and 
tagged  videos  that  can  be 
searched  by  event,  candi¬ 
date,  issues  and  questions 
asked,  the  CPD  said.  Users 
will  also  be  able  to  share, 
comment  on  and  rate  clips. 

The  debate  announce¬ 
ment  followed  a  “Politics 
2.0”  protest  by  Republicans 
in  the  House  of  Repre¬ 
sentatives  on  Aug.  1.  After 
the  House  adjourned  for 
vacation,  GOP  legislators 
sent  messages  via  Twitter, 
streamed  live  video  and 
posted  clips  on  YouTube 
that  protested  the  lack  of 
a  vote  on  an  offshore  oil¬ 
drilling  bill. 

Analysts  said  the  incident 
shows  that  like  Demo¬ 
cratic  presidential  candidate 


Global , 
Dispatches 

Bank  Starts  Work 
On  IT  Overhaul 

MELBOURNE,  Australia  - 
National  Australia  Bank  Ltd. 
last  week  said  it  has  begun  a 
five-year  initiative  to  overhaul 
its  core  banking  systems. 

NAB,  one  of  the  country’s 
largest  banks,  is  partner¬ 
ing  with  Oracle  Corp.  for  the 
project’s  first  phase,  which 
will  deliver  a  new  system  for 
the  bank’s  Star  Direct  unit. 

The  system  will  be  based  on 
the  Flexcube  banking  suite 
developed  by  Oracle’s  i-Flex 
subsidiary.  Initial  rollouts  are 
expected  within  six  to  eight 
months.  NAB  said  it  will  set 
plans  for  subsequent  phases  of 
the  Next  Generation  Platform 
project  during  the  same  period. 


Microsoft  released 
SQLServer  1008,  ab  ut 
three  months  behind  sched¬ 
ule  but  well  within  its  three- 
year  window  for  developing 
the  database.  The  previous 
release.  SQL  Server  2005, 
took  five  years  to  complete. 

said  it 

Will  start  offering  in-flight 


Wi-Fi  access  this  fall  and 
equip  all  of  its  330-plus  U.S. 
planes  with  the  wireless 
technology  by  next  summer. 

THREE  YEARS  AG  Micro¬ 
soft  hired  Kevin  Turner,  a 
former  CIO  and  business 
executive  at  Wal-Mart 
Stores  lnc„  to  be  its  chief 
operating  officer. 


The  announcement  came 
just  days  after  NAB  disclosed 
on  July  30  that  an  “overnight 
processing  delay”  was  hold¬ 
ing  up  paycheck  deposits  and 
other  payments  to  customers. 
Andrew  Hendry, 
Computerworld  Australia 

Virtual  Mobile 
Coming  to  India 

BANOALORE,  India  -  Mobile 
virtual  network  operators  that 
provide  cell  phone  service 
to  customers  but  don’t  own 
spectrum  or  a  network  infra¬ 
structure  may  soon  be  allowed 
to  set  up  shop  in  India. 

The  move  to  allow  MVNOs 
to  begin  direct  operations  is 
expected  to  increase  competi¬ 
tion  and  lower  prices  for  users, 
who  currently  have  limited 
choices  for  mobile  services. 

MVNOs  would  also  help 
make  more  efficient  use  of  the 
country’s  telecommunications 


infrastructure,  the  Telecom 
Regulatory  Authority  of  India 
said  in  a  government  report. 
John  Ribeiro, 

IDG  News  Service 

BRIEFLY  NOTED 

Nokia  Corp.  is  setting  up  a 
six-person  research  unit  that 
will  work  to  develop  prototypes 
of  cell  phones  suited  to  the 
African  market.  Jussi  Impio, 
team  leader  of  Nokia  Research 
Africa,  said  the  continent  is 
becoming  a  more  important 
market  for  Nokia,  although 
he  added  that  the  multitude 
of  languages  and  insufficient 
infrastructure  pose  challenges. 
Edris  Kisambira, 

IDG  News  Service 
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When  You 
Need  It  Most 


SunGard  Availability  Services  help  your  business  move  forward  with 
the  most  advanced  and  widest  choice  of  information  availability  options 
in  the  industry 


From  virtualization  to  hot  sites  to  replication  and  vaulting— SunGard  Availability  Services 
does  it  all.  And  it’s  alt  we  do.  That  kind  of  focus  helps  ensure  high  availability  of  data, 
applications  and  systems  and  fits  your  needs  and  budget  precisely. 

When  we  partner  with  you,  you  worry  less  about  the  road  ahead.  Here’s  why: 
a  track  record  of  100%  successful  recoveries;  over  60  facilities  with  redundant 
power  connected  to  SunGard's  secure  global  network;  and  more  than  20,000  end- 
user  positions  in  facilities  across  North  America  and  Europe.  SunGard  Availability 
Services— the  information  availability  solution  for  businesses  that  must  run  non-stop. 
Keep  moving,  call  1-800-468-7483  or  visit  www.availability.sungard.com. 


SUNGARD* 

Availability  Services  Connected.® 
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s  handheld  de¬ 
vices  become 
more  like 
full-fledged 
computers,  IT 
managers  and  end  users  are 
again  considering  the  ques¬ 
tion  of  whether  business 
travel  ers  can  leave  their 
laptops  at  home.  But  that 
still  appears  to  be  more  of 
a  future  goal  than  a  current 
reality. 

Relying  solely  on  a  hand¬ 
held  hasn’t  been  a  realistic 
option  for  most  road  war¬ 
riors.  But  analysts  at  firms 
such  as  Gartner  Inc.  predict 
that  it  will  be  someday  soon. 
And  Apple  Inc.’s  release  of 
the  iPhone  3G  last  month 
has  helped  reinvigorate  the 
laptop-vs.-handheld  debate. 

For  Seppo  Beumers,  an 
applications  manager  at 
Genzyme  Corp.’s  European 
operations  in  Amsterdam, 
the  idea  of  putting  all  the 
apps  his  users  need  onto  a 
handheld  is  no  longer  theo¬ 
retical.  More  than  two  years 
ago,  Beumers  began  adding 
client  contact  management 
software  and  other  sales 
tools  to  the  BlackBerry 
handhelds  carried  by  Gen- 
zyme’s  150-plus  pharma¬ 
ceutical  and  medical-device 
sales  reps  in  Europe. 

“Gradually,  we  will  lose 
the  laptops,”  Beumers  pre¬ 
dicted.  “That  is  the  direc¬ 
tion  we  are  moving.”  He 
said  that  many  of  the  sales 
reps  don’t  need  to  write  long 
reports  while  on  the  road 
and  that  they  can  use  their 
BlackBerries  for  e-mail. 

They  also  can  enter 
information  into  the  hand¬ 
helds  during  meetings  or 
immediately  afterward,  he 
noted.  That  lets  the  sales 
reps  quickly  share  data  with 
co-workers  and  saves  them 
time  that  they  used  to  spend 
entering  handwritten  notes 
into  their  laptops. 

But  Beumers  added  that 


any  discussion  of  handhelds 
fully  usurping  laptops  is 
still  premature.  To  make 
that  truly  feasible,  he  said, 
the  BlackBerry  needs  faster 
data-transmission  speeds, 
more  memory,  a  larger 
screen  and  better  batteries. 

Farpoint  Group  analyst 
Craig  Mathias  doesn’t 
think  most  mobile  workers 


will  ever  be  able  to  carry 
just  a  handheld.  “I  call  it 
the  single-device  paradox,” 
he  said.  “There’s  no  single 
device  for  everything,  espe¬ 
cially  when  you  consider  the 
input  and  display  on  a  smart 
phone  or  handset.” 

Even  slider  phones  or 
dual-keyboard  flip  devices 
can  be  too  small  for  the  kind 


of  work  that  many  business 
travelers  need  to  do,  such  as 
writing  reports  or  running 
PowerPoint  presentations. 

Brant  Castellow,  a  re¬ 
gional  sales  executive  at 
Correlagen  Diagnostics  Inc. 
in  Waltham,  Mass.,  under¬ 
stands  all  too  well  the  para¬ 
dox  that  Mathias  described. 
Castellow  recently  bought 
an  iPhone  3G  and  would 
love  to  use  it  for  all  of  his 
communications  and  com¬ 
puting  needs  on  business 
trips  —  but  Correlagen’s 
CRM  applications  and  cor¬ 
porate  VPN  still  require  the 
use  of  a  PC.  As  a  result,  he 
continues  to  cart  along  his 
laptop  when  traveling. 

Castellow  said  via  e-mail 
that  he  uses  his  PC  less  than 
he  once  did,  but  he  noted 
that  bringing  it  with  him 
“might  be  a  hard  habit  to 
break.” 

Colin  Dickerson,  an  engi¬ 
neer  at  The  Procter  &  Gam¬ 
ble  Co.’s  Gillette  Engineer¬ 
ing  Group  in  Boston,  said 
that  for  personal  trips,  he 
recently  started  leaving  his 
laptop  at  home  and  taking 
only  his  iPhone  with  him.  “I 
love  having  just  one  device 
to  carry  around,”  he  said. 

But  Dickerson  noted  that 
for  work  purposes,  “I  don’t 
see  myself  traveling  without 
my  laptop  anytime  soon.” 
Even  while  away  from  the 
office,  Dickerson  needs  to 
access  heavy-duty  engi¬ 
neering  programs  such  as 
Unigraphics  and  AutoCAD, 
which  he  doesn’t  expect  to 
be  able  to  do  with  a  smart 
phone  in  the  near  future. 

As  a  compromise  be¬ 
tween  laptops  and  hand¬ 
helds,  Mathias  and  other 
analysts  expect  many  users 
to  switch  to  sublaptops, 
such  as  the  Asus  Eee  and 
the  so-called  mobile  Inter¬ 
net  devices  being  touted 
by  Intel  Corp.  and  various 
hardware  vendors.  ■ 


No  Laptops 
Left  Behind 

Handheld  devices  may  be 
getting  more  computerlike, 
but  mobile  workers  still  have 
to  juggle  a  mix  of  laptops, 
PDAs  and  smart  phones. 

By  Matt  Hamblen 
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desk  calls  with  automatic  toner  and  maintenance  alerts 
It's  part  of  a  new  breed  of  workflow-enhancing  MFPs 
from  HP.  That's  alternative  thinking  about  printing. 


hp.com/go/6040 


ALL  MFPs  SORT  PAGES, 

THIS  ONE  SORTS  YOUR  C  FFICE. 

• 
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The  HP  Color  LaserJet  CM6040  MFP  can  help  you  take 
control  of  printing  and  copying.  With  tools  like  Web 
Jetadmin,  IT  can  be  more  productive.  It  also  limits  help 
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Turning  the  Page 

On  PCs  Not 
An  Easy  Call 

For  IT  Execs 


How  often 
should  you 
replace  your 
PCs?  That  all 
depends. 

By  Patrick 
Thibodeau 


Ask  what 

seems  like  a 
simple  question 
—  How  often 
should  PCs  be 
replaced?  —  and  you’ll  find 
that  for  IT  managers,  the 
answer  isn’t  so  simple.  And 
it’s  certainly  not  universal. 

The  correct  answer  at 
Grant  Thornton  LLP  is  24 
months.  And  next  month, 
the  Chicago-based  account¬ 
ing  and  management  con¬ 
sulting  firm  plans  to  replace 
5,000  laptop  and  desktop 
PCs  that  have  reached  the 
two-year  usage  limit. 

At  Southern  Co.,  an  elec¬ 
tricity  generator  and  utility 
operator  in  Atlanta  that 
has  about  23,000  PCs,  the 
answer  is  three  years  for 
laptops.  But  18  months  ago, 
it  began  replacing  desktop 


systems  every  four  years. 

And  Virgin  Entertain¬ 
ment  Group  Inc.  has  no 
single  answer  to  the  PC  re¬ 
placement  question.  Instead, 
the  Los  Angeles-based  com¬ 
pany  has  an  “on  demand” 
refresh  policy  under  which 
it  replaces  systems  as  need¬ 
ed,  based  on  the  business 
requirements  of  individual 
workers  or  departments. 
Some  of  its  700  PCs,  in  par¬ 
ticular  the  desktops,  may  be 
four  or  even  five  years  old. 

For  IT  execs  in  general, 
financing  arrangements,  the 
ways  PCs  have  been  used, 
the  need  for  more  process¬ 
ing  power  to  run  resource¬ 
intensive  applications,  and 
“softer”  issues  —  such  as 
keeping  younger  employees 
happy  by  giving  them  new 
technology  —  can  all  be 
considerations  in  deciding 
when  to  replace  systems. 

But  while  there  may 
not  be  any  real  consensus 
among  companies,  the 
broader  IT  trends  point  to 
an  expanding  period  be¬ 
tween  PC  refreshes. 
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Many  companies  have 
settled  on  a  three-year 
refresh  cycle  for  laptops 
and  a  four-year  window  for 
desktops,  said  Gartner  Inc. 
analyst  Leslie  Fiering,  who 
added  that  the  replacement 
cycles  have  increased  over 
the  past  few  years.  Four 
years  isn’t  even  out  of  the 
question  for  laptops  or  note¬ 
book  PCs,  Fiering  said. 

Of  all  the  factors  that  can 
influence  a  PC  replacement 
schedule,  accounting  may 
be  the  most  important.  And 
while  the  slowing  economy 
may  prompt  some  compa¬ 
nies  that  treat  their  PCs  as 
a  capital  expense  to  hold 
on  to  the  systems  longer, 
many  businesses  lease  their 
equipment  and  are  sticking 
with  the  refresh  schedules 
in  their  contracts,  as  is  the 
case  at  Grant  Thornton. 


MThis 
younger 
workforce,  they 
really  want  the 
latest  tools. 

They’re  going 
to  push  us  to  be 
very  progressive.  It’s  not  like 
the  workforce  of  the  past. 

REBECCA  BLALOCK,  CIO,  SOUTHERN  CO. 


Dave  Johnson,  the  firm’s 
director  of  infrastructure 
and  technology,  said  that  he 
gets  a  higher  residual  value 
on  systems  by  taking  them 
under  a  shorter  lease,  thus 
helping  to  lower  his  overall 
costs.  And,  he  said,  the  lease 
payments  take  the  residual- 
value  calculations  into  ac¬ 
count,  “so  it  doesn’t  neces¬ 
sarily  pay  to  go  out  much 
beyond  30  to  36  months.” 

But  financing  issues  aren’t 
all  that’s  in  play.  For  in¬ 
stance,  laptops  are  the  point 
of  the  technology  spear  at 
Grant  Thornton.  Its  work  in¬ 
volves  a  lot  of  travel  to  client 
sites,  which  can  be  tough  on 
IT  equipment.  Johnson  said 
the  durability  of  laptops  is 
increasing,  but  not  enough 
for  him  to  extend  his  24- 
month  refresh  cycle. 

Another  reason  why  the 
two-year  cycle  still  makes 
sense  for  Johnson  is  that  he 
can  be  certain  the  hardware 
he  gives  his  users  will  meet 
their  application  needs  for 
that  amount  of  time.  “The 
further  out  you  go,  the  bet¬ 
ter  your  crystal  ball  needs 
to  be  as  to  exactly  what  you 
are  going  to  be  running 
three  to  four  years  from 
now,”  he  said. 

William  Lewkowski,  CIO 
at  Metro  Health  Corp.  in 
Wyoming,  Mich.,  leases 
most  of  the  health  care 
provider’s  technology,  in¬ 
cluding  PCs  and  data  center 
equipment.  Lewkowski  likes 
how  the  leasing  approach 
drives  IT  upgrades. 

“It  forces  us  to  keep  cur¬ 
rent  every  three  or  three 
and  a  half  years,”  he  said. 

But  Lewkowski  said  he 
doesn’t  doubt  that  he  could 
extend  the  life  spans  of 
some  of  his  desktop  systems 
in  particular  to  four  or  five 
years,  especially  as  he  starts 
using  virtualization  technol¬ 
ogy  to  deliver  applications 
to  end  users. 


On  the  other  hand,  Virgin 
Entertainment  CIO  Robert 
Fort  buys  his  IT  gear  and 
treats  the  purchases  as  a 
capital  expense,  which  gives 
him  more  flexibility  than  he 
would  have  if  he  was  leasing 
equipment.  Then  it  becomes 
a  question  of  how  best  to 
spend  the  company’s  IT  dol¬ 
lars  —  on  replacements  of 
all  PCs  at  regular  intervals, 
or  on  what  Fort  described  as 
“higher-priority  activities”? 

Fort’s  answer  to  that 
question  is  that  replacing 
PCs  on  an  as-needed  basis 
makes  the  most  sense.  Each 
year,  he  sets  a  baseline  con¬ 
figuration  standard  with 
his  PC  vendor  that  any  new 
systems  must  meet.  But 
deciding  when  individual 
PCs  should  be  replaced  can 
depend  on  factors  such  as 
application  needs  and  the 
amount  of  on-the-road  use 
that  they  get,  Fort  said. 

Rebecca  Blalock,  South¬ 
ern  Co.’s  CIO,  said  she 
thinks  desktop  technology 
“has  stabilized  enough”  to 
make  a  four-year  refresh  cy¬ 
cle  on  those  systems  feasible 
for  users.  But  there’s  still  a 
need  to  stick  to  three  years 
on  laptops,  Blalock  said,  and 
she  doesn’t  see  the  life  cycle 
for  either  laptops  or  desk¬ 
tops  getting  much  longer. 

With  new  processors  still 
arriving  at  a  Moore’s  Law 


pace  of  every  18  months  or 
so,  the  cost  of  computing 
power  continues  to  decline 
rapidly,  Blalock  said.  And 
software  vendors  continue 
to  develop  applications  that 
are  more  functional  and 
require  more  processing 
power,  she  pointed  out. 

There’s  also  the  need 
to  meet  the  expectations 
of  employees,  especially 
young,  IT-savvy  ones.  “This 
younger  workforce,  they 
really  want  the  latest  tools,” 
Blalock  said.  “They’re  go¬ 
ing  to  push  us  to  be  very 
progressive.  It’s  not  like  the 
workforce  of  the  past.” 

Steve  Rubinow,  CIO  at 
NYSE  Euronext  Inc.,  which 
operates  the  New  York 
Stock  Exchange,  said  he 
sometimes  hears  complaints 
about  laptops  even  from 
workers  who  do  nothing 
more  than  run  Word. 

The  NYSE  uses  a  combi¬ 
nation  of  blanket  upgrades 
and  replacements  based 
on  use.  For  instance,  some 
developers  may  still  be 
walking  around  with  four- 
year-old  laptops,  while  fre¬ 
quent  travelers  may  get  new 
machines  much  sooner. 

“The  rule  of  thumb  is  still 
three  years,”  Rubinow  said. 
But,  he  added,  “it’s  as  much 
driven  by  accounting  men¬ 
tality  as  it  is  by  technology 
changes.”  ■ 
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The  Rise  of  Videoconferencing 

WITH  AIRLINES  adding  new  fees  just  about  every  day 

(Delta  now  charges  $50  for  a  second  checked  bag), 
videoconferencing  has  never  looked  more  promising. 

Products  already  crowd  the  market,  and  vendors 
have  more  on  the  way,  many  of  them  offering  easy- 
to-use,  high-definition  video  and  audio  at  reasonable  costs. 


Take  Polycom  Inc.  in  Pleasanton, 
Calif.,  for  example.  According  to 
John  Antanaitis,  vice  president  of 
product  marketing,  the  Converged 
Management  Application  (CMA)  ap¬ 
pliances  that  Polycom  plans  to  ship 
in  October  have  a  little  something 
for  both  IT  and  the  end  user. 


The  CMA  line  will  let  IT  provision 
video  services  and  apply  policies, 


Paired  with  Polycom’s  CMA  line  of 
products,  the  RMX  lets  end  users  make 
multipoint  videoconference  calls. 


using  LDAP  or  Active  Directory,  on 
things  such  as  least-cost  routing  and 
dynamic  bandwidth-allocation  pri¬ 
orities.  And,  Antanaitis  says,  the  sys¬ 
tem  gives  Windows  users  a  simple 
client  to  create  videoconferencing 
contacts,  check  their  availability 
and  initiate  two-way  video  sessions. 
Combined  with  the  company’s  RMX 


multipoint  conferencing  system, 
the  CMA  lets  users  run  interactive 
videoconferences  for  numerous  loca¬ 
tions.  The  CMA  4000  can  handle 
up  to  400  devices.  Its  big  brother, 
the  CMA  5000,  supports  up  to  5,000 
devices. 

Pricing  for  200  CMA  4000  device 
licenses  starts  at  $20,000. 

Search  the  Entire 
Enterprise  Easily 

A  single  enterprise  search  system 
that  covers  both  structured  and  un¬ 
structured  data  repositories  makes 
a  lot  of  sense.  But  giving  end  users 
both  the  power  of  SQL  queries  and 
the  simplicity  of  traditional  search 
is  hard.  Andrew  McKay,  senior  vice 
president  of  products  at  Attivio  Inc. 
in  Newton,  Mass.,  claims  that  his 
company’s  Active  Intelligence  En¬ 
gine  (AIE)  “has  the  precision  of  SQL 
and  the  fuzziness  of  search.” 

Not  only  can  the  software  index 
and  store  a  database’s  tabular  content, 
he  says,  but  AIE  will  also  note  poten¬ 


tial  joins  among  the  tables.  If  an  end 
user’s  search  could  benefit  from  join¬ 
ing  the  tables,  McKay  says,  AIE  will 
do  the  joins  and  combine  the  infor¬ 
mation  with  the  search  results. 

Shipping  now,  AIE  1.2  takes  up 
a  mere  20MB  of  storage  capacity, 
though  it  can  index  up  to  1  million 
documents  per  server.  McKay  says 
you  can  add  hardware  on  the  fly 
without  having  to  reindex  the  other 
servers.  Pricing  varies. 

Back  Up  Oracle  Apps 

Started  in  1991  as  the  Advanced 
Maryland  Automatic  Network 
Disk  Archiver  at  the  University  of 
Maryland,  the  Amanda  open-source 
backup  software  project  is  a  favor¬ 
ite  among  systems  administrators. 
Sunnyvale,  Calif.-based  Zmanda 
Inc.,  which  offers  both  open-source 
and  commercial  versions  of  the  tool, 
this  week  started  shipping  its  agent 
for  Oracle  lOg  and  llg  systems. 

CEO  Chander 
Kant  says  the  value 
of  open  source  is 
magnified  when  it 
comes  to  backup 
software.  If  you 
have  a  seven-year 
document-retention 
policy  and  your 
proprietary  backup 
software  supplier 
goes  out  of  business, 

Kant  argues,  you  will  need  to  keep 
at  least  some  remnant  of  the  old 
technology  around  for  seven  years 
in  order  to  recover  the  data  for,  say, 
governance  purposes. 

But  if  your  backup  software’s 
source  code  conforms  to  industry 
standards,  Kant  contends,  you’re  less 
likely  to  face  operational  restrictions 
involving  your  backup  tools  in  the 
years  ahead.  That’s  why  Zmanda 
has  included  support  for  Oracle’s 
popular  Recovery  Manager  module. 
Zmanda  will  back  up  Oracle  applica¬ 
tions  running  on  Linux,  Solaris  or 
Windows  systems.  For  the  latter,  it 
integrates  with  Microsoft’s  Visual 
Shadow  Copy  Service  to 
ease  the  archiving  of  Win¬ 
dows  data. 

Zmanda  Oracle  Agent 
works  with  Amanda  Re¬ 
lease  2.6.4.  Pricing  starts 
at  $300  per  server.  ■ 


O  MORE  BUZZ 

Discover  and  discuss 
more  industry  action  at 
the  On  the  Mark  blog: 

blogs.computervrorid. 

com/hall 


Kant: 

Back  up  Oracle 
databases  with 
open  source. 
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Llamas  spit  to  help  guide  and  keep  harmony  in  the  herd 


They  don’t  have  a  better  way  to  ensure  compliance. 

But  you  can.  With  proven  information  management  software  from  SAS, 


www.sas.com/IIamas 


SAS  SOFTWARE,  AT  WORK  IN  97%  OF  THE  TOP 
100  COMPANIES  ON  THE  2007  FORTUNE  500. 


POWER 
TO  KNOW 


m  THE  GRILL 

Jorge  Mata 

The  L.A.  Community  Colleges  CIO 
talks  about  finessing  the  politics  of 
education,  keeping  IT  vendors  honest 
and  making  a  difference  to  students. 


Dossier 

Name:  Jorge  Mata 
Title:  CIO 

Organization:  Los  Angeles 
Community  College  District 

Location:  Los  Angeles 

Favorite  technology: 

The  Internet 

Favorite  movie:  “ Aliens ,  where 
the  women  are  heroes.” 

Favorite  vice:  Tequila 

Role  model:  The  Rev.  Martin 
Luther  King  Jr. 

Most  interesting  thing  people 
don’t  know  about  him:  “I  was 
conceived  in  the  U.S.  but  born 
in  Mexico.  My  parents  moved 
back  to  the  U.S.  three  weeks 
later.  My  mother  took  me  to 
Mexico  to  be  bom,  saying  she 
didn’t  want  me  to  be  confused 
about  my  background.” 


Last  year,  Jorge  Mata  became  CIO  for 
the  Los  Angeles  Community  College 
District,  a  federation  of  nine  colleges 
and  several  satellite  campuses  serving 
140,000  students  and  10,000  staffers 
with  an  IT  shop  of  70  workers. 

Is  it  difficult  to  lead  such  a  diverse  orga¬ 
nization?  Because  we’re  a  federation 
of  nine  colleges  with  a  CEO  on  each 
campus,  getting  everybody  to  agree  is 
difficult.  So  I  envision  my  role  as  CIO 
as  creating  opportunities  to  come  to 
consensus.  The  political  role  is  crucial. 
The  people  with  the  trump  power  are 
faculty  with  tenure.  They  are  experts 
in  the  instructional  field,  and  we  in  IT 
have  to  defer  to  them  in  many  areas, 
which  makes  sense  because  education 
is  our  mission.  That  concept  is  really 
alien  to  some  people,  but  it  compares 
to  the  way  businesses  relate  to  their 
salespeople,  who  bring  in  the  revenues. 

What’s  your  biggest  IT  challenge  right 
now?  We  have  an  aging  student- 
information  system,  the  equivalent  of 
the  ERP  for  higher  ed.  It  has  every¬ 
thing  from  registration  to  enrollment, 
and  the  course  schedule  is  the  crown 
jewel,  since  that  drives  our  revenue. 

If  we  don’t  offer  the  right  courses, 

Continued  on  page  22 
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The  fastest  way  to  have  a  connected  workplace. 


Work  with  InterSystems  Ensemble®  software  to  raise 
productivity  and  lower  costs. 

Ensemble  is  a  rapid  integration  and  development 
platform  that  makes  it  much  easier  to  connect  applications, 
processes,  and  people.  IT  managers  who  have  switched 
from  other  integration  products  report  they  can  finish 
projects  in  half  the  time  with  Ensemble. 

For  your  future  development  efforts,  if  you  embed 
Ensemble  you  can  create  a  new  class  of  applications  that 
are  connectable.  Plus,  you'll  be  able  to  enhance  legacy 
applications  with  adaptable  workflow,  browser-based  user 


interfaces,  rules-based  business  processes,  dashboards, 
and  other  innovations  -  without  rewriting  your  code. 

Ensemble’s  technology  stack  includes  the  world's 
fastest  object  database  -  InterSystems  Cache®.  Cache's 
lightning  speed,  massive  scalability,  and  rapid  development 
environment  give  Ensemble  unmatched  capabilities. 

For  30  years,  we've  been  a  creative  technology 
partner  for  leading  enterprises  that  rely  on  the  high 
performance  of  our  products.  Ensemble  and  Cache  are 
so  reliable  that  the  world's  best  hospitals  use  them  for 
life-or-death  systems. 


IhterSystems 

See  product  demonstrations  at  InterSystems.com/Connectl4A 
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LOCALS 


Welcome  to  IBM  Express  Advantage’,"  with  hundreds  of  proven  solutions  designed  for  the 
needs  of  mid-sized  companies.  Whether  on  your  block  or  in  your  area,  our  local  Business  Partners 
are  experienced  in  your  industry  and  market.  From  consultants  and  integrators  to  software  vendors 
and  distributors,  they  can  help  customize  solutions  to  fit  your  company’s  specific  needs.  It’s  innovation 
made  easy.  From  the  people  and  Business  Partners  of  IBM. 


PROVEN  SOLUTIONS 
EASY  FINANCING 
CONCIERGE  SERVICE 
LOCAL  PARTNERS 


==  express 
^"§:»  advantage 


Innovation  made  easy. 
ibm.com/ibmaccess  or  1-877- IBM-ACCESS. 
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Ml  would  make 
more  money 
outside,  but 
I  don’t  know  if  I’d  be 
happier. 


Continued  from  page  18 
people  won’t  take  [what’s  offered].  We 
can’t  outsource  [course  scheduling], 
because  it’s  art  and  skill  and  politics 
embodied  in  one  document. 

It  takes  intimate  knowledge  of  why 
people  take  certain  courses,  something 
brought  to  the  table  by  the  department 
chairs  and  administrators.  The  biggest 
problem  with  it  is  that  it’s  a  terminal- 
based  system  in  a  Web  world,  so  there 
are  green  screens.  We  have  a  lot  of  soul 
searching  on  what  to  do  with  it. 


How  can  you  operate  with  so  few  IT  em¬ 
ployees?  We  understand  we  have  to  put 
dollars  into  classrooms,  which  are  also 
becoming  digital,  so  our  discussion 
is  what  is  the  right  balance.  IT  didn’t 
even  interact  with  students  30  years 
ago.  Now  IT  is  often  the  first  thing  our 
students  see  of  our  organization. 

How  can  you  keep  pace  with  students 
demanding  Wi-Fi  and  other  technologies? 

Students  are  very  savvy,  and  they’ll 
find  the  educational  institutions  that 
meet  their  needs.  We  don’t  need  to  be 
bleeding-edge,  but  we  can’t  delay  inno¬ 
vations  forever.  For  example,  we  don’t 
have  wireless  access  in  all  areas.  We 
find  students  want  more  online  cours¬ 
es  and  can  be  frustrated  when  they 
[see]  many  courses  online  and  find  the 
one  they  must  take  is  not  online. 

They  want  Wi-Fi  in  more  places, 
too.  From  an  educational  standpoint, 

I  agree  them,  because  we’re  entirely  a 
commuter  school.  We  know  that  the 
longer  students  are  on  campus,  the 
greater  their  chances  of  success. 

With  Wi-Fi  and  college  kids,  have  you 
been  hacked?  Not  that  I  am  aware  of. 
But  I  know  it’s  not  a  question  of  if,  but 
when.  It’s  impossible  to  protect  every¬ 
thing,  but  it  is  possible  to  plan  what 
to  do  when  a  breach  occurs.  We  think 
we’re  more  likely  to  be  a  launch  point, 
the  source,  with  high-speed  access,  for 
hacks  on  somewhere  else. 

As  your  college  district  grows  and 
changes,  have  you  gained  an  advantage 
in  dealing  with  technology  vendors?  We 

have  education  discounts,  of  course, 
which  reduces  our  management  over¬ 
head,  and  we  use  a  contracting  alliance 
to  find  the  lowest  prices.  We  can  evalu¬ 
ate  vendors  so  that  if  there  is  a  compet¬ 
itor,  we  will  know  if  it’s  a  good  price. 
We  also  have  Microsoft  campus  agree¬ 
ments,  which  means  we  buy  a  license 
for  the  entire  campus,  which  has  freed 
us  from  being  the  licensing  police. 

We  have  found  savings  by  standard¬ 
izing  on  equipment  and  recently  began 
using  two  types  of  desktops  from  Dell 
and  HP  instead  of  using  40  models.  One 
thing  we’d  like  from  more  vendors  is  that 
they  offer  students  comparable  pricing 
to  what  we  pay  for  software  or  hard¬ 
ware,  if  we  can  prove  they  are  students. 


How  do  you  keep  your  technology  vendors 
honest?  We  have  actively  courted  some 
vendors  as  strategic  partners,  such  as 
Microsoft,  HP  and  Cisco,  and  we  have 
a  nondisclosure  agreement  with  them 
so  that  they  are  able  to  tell  us  what’s 
coming  in  technology  and  we  can  align 
our  decision-making  with  their  road 
maps.  We  know  the  road  maps  aren’t 
promises,  but  it  tells  where  they  are 
focused.  We  have  yearly  briefings  with 
them  and  have  rules  of  engagement. 

We’re  brutally  honest  with  them, 
too.  Sometimes  I  say  their  technology 
is  great  for  a  four-year  college  but  hor¬ 
rible  for  a  two-year  college  and  here’s 
why,  and  sometimes  they  have  said, 
“Oh,  we  hadn’t  thought  about  that.” 

Since  you  are  part  of  an  educational 
institution,  do  you  have  a  tight  policy 
on  accepting  vendor  gifts?  I  asked  our 
legal  department  about  this,  and  they 
said  gifts  under  $10  are  allowed,  but 
above  that,  you  have  to  fill  out  a  form 
where  you  itemize  anything  over  that 
amount. 

I  was  at  a  storage  conference  in  Las 
Vegas  where  one  of  the  vendor  give¬ 
aways  was  actually  a  Mercedes  con¬ 
vertible.  I  wouldn’t  put  my  card  into 
the  drawing  because  if  I’d  won  it,  that 
would  be  completely  unethical.  Taking 
a  lunch  is  OK,  because  that’s  a  part  of 
doing  business  if  you  discuss  matters. 
But  a  $500  dinner  —  it’s  better  not  to 
get  into  those  situations. 

When  we  run  trials  of  equipment 
or  software,  we  are  careful  that  they 
come  with  return  stickers  on  the  box, 
which  guarantees  it  is  a  just  a  test,  not 
a  demo  forever. 

Is  it  hard  to  keep  good  IT  workers,  es¬ 
pecially  since  they  get  lower  pay  than 
a  company  would  offer?  It’s  hard  to 
compete  on  dollars  alone.  On  the  other 
hand,  if  they  are  hired  by  us,  we  note 
that  there’s  much  less  stress,  and  it’s 
more  rewarding,  and  the  benefits  are 
very  hard  to  beat. 

Our  quality  of  life  is  much  higher 
here.  I  would  make  more  money  out¬ 
side,  but  I  don’t  know  if  I’d  be  happier. 

I  tell  my  team  that  we  change  people’s 
lives  here.  If  we  do  a  good  job,  it  might 
be  that  tiny  thing  that  pushes  a  student 
into  success. 

—  Interview  by  Matt  Hamblen 
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OPINION 


Steven  J.  Vaughan-Mchols 


Windows’  Days 
May  Be  Numbered 


OULD  MICROSOFT  be  switching  away  from 
Windows? 

Some  very  interesting  documents  have  been  leak¬ 
ing  out  of  Microsoft.  They  clearly  indicate,  believe  it 
or  not,  that  Microsoft  is  considering  shifting  its  users  from 
Windows  to  a  new  operating  system:  Midori. 


And,  when  I  say  “new,” 

I  mean  new.  This  isn’t  the 
kind  of  lip-service  change 
that  we  saw  with  David 
Cutler  and  NT  or  Jim 
Allchin  and  Vista.  Midori, 
under  Eric  Rudder,  senior 
vice  president  for  techni¬ 
cal  strategy,  isn’t  a  cosmet¬ 
ic  change;  it’s  a  completely 
new  operating  system. 

Midori  is  being  designed 
from  the  ground  up  to 
be  a  distributed  operat¬ 
ing  system  running  on 
top  of  multiple  hardware 
systems  and  virtual  ma¬ 
chines.  That’s  one  heck  of 
a  change  from  what  has 
always  been  a  single-user 
operating  system  designed 
for  a  stand-alone  PC. 

That  design  is  a  big 
reason  why  Windows  is 
the  insecure  mess  that 
has  kept  Symantec, 
McAfee  and  dozens  of 
other  anti-malware  com¬ 
panies  in  business  for 
decades.  Despite  that, 
Microsoft  has  never  dared 
to  change  Windows  too 
much,  because  it  has  been 
a  cash  cow.  Now,  things 


seem  to  be  changing. 

No  one  would  dare  let 
me  enter  the  halls  of  the 
Microsoft  campus,  so  I 
can  only  imagine  that 
Midori  started  as  a  skunk- 
works  project.  Its  purpose 
was  probably  to  try  out 
some  ideas.  That  kind  of 
project  gets  started  all  the 
time  in  major  technology 
companies.  Most  of  them 
amount  to  little.  Why 
would  Midori  take  on  a 
life  of  its  own? 

I  think  it’s  because 
Vista’s  dismal  market  per¬ 
formance  really  shocked 
Microsoft.  The  company 
has  had  plenty  of  other 
failures  —  Microsoft  Bob 
quickly  comes  to  mind 
—  but  Vista  is  a  failure 
of  epic  proportions.  The 
reason  both  Mac  OS  and 
Linux  are  gaining  ground 
on  Windows  is  that  people 
are  rejecting  Vista  (much 

■  Vista’s  dismal 
market  perfor¬ 
mance  really 
shocked  Microsoft. 


as  I’d  like  to  give  the  credit 
to  their  advantages). 

Now,  you  may  not  be¬ 
lieve  that  the  Linux  desk¬ 
top  or  the  Mac  is  really 
taking  market  share  from 
Windows,  but  they  are.  In 
the  U.K.,  Linux  was  prein¬ 
stalled  on  2.9%  of  all  PCs 
sold  in  June.  Meanwhile, 
14%  of  all  PCs  sold  in  the 
U.S.  are  Macs.  People  are 
no  longer  mindlessly  buy¬ 
ing  Windows  systems,  and 
Microsoft  knows  that. 

The  company  has  tried 
to  con  —  uh,  convince  — 
people  that  Vista  really  is 
a  good  operating  system, 
with  its  painful  Mojave 
Experiment  Web  site. 

The  site  crashed  Safari 
on  my  MacBook  Pro  and 
wouldn’t  render  on  Firefox 
on  my  openSUSE  Linux 
PC.  When  I  finally  did  get 
it  to  show  up  on  an  XP  SP3 
system,  I  was  told  it  was 
my  fault  that  I  was  having 
trouble  with  Vista.  That’s 
a  surefire  way  to  make  me 
want  to  buy  Vista. 

Windows  has  had  a 
long  run,  too  long  really. 


It  can’t  be  twisted  into  an 
operating  system  that  can 
handle  a  world  where  pro¬ 
cessing  power  may  be  on 
the  desktop  or  in  a  cloud, 
and  where  networking  is 
a  given.  Microsoft  needs 
something  different. 

But  can  it  be  serious 
about  dropping  Windows? 
I  think  it  is.  Vista  has 
been  a  wake-up  call  that 
the  company  can’t  simply 
keep  reinventing  the  same 
old  thing.  At  the  same 
time,  Microsoft  knows,  of 
course,  that  it  can’t  afford 
to  alienate  its  customers, 
so  the  plan  is  to  include 
Windows  legacy  support 
by  way  of  virtualization. 
This  path  should  enable 
Microsoft  to  provide  the 
outstanding  legacy  appli¬ 
cation  support  it  will  need 
to  keep  end  users  happy. 

Having  said  all  this,  do  I 
think  Microsoft  will  actu¬ 
ally  follow  through?  Not 
for  a  while,  if  at  all.  I  can’t 
see  Midori  coming  out  be¬ 
fore  2013.  The  real  question 
is,  will  Steve  Ballmer  make 
it  happen?  I  can’t  see  it.  I 
can’t  hold  the  word  vision 
and  Ballmer  in  my  head  at 
the  same  time.  If  Microsoft 
changes  management,  Mi¬ 
dori  will  turn  into  reality. 

If  he  stays  in  charge,  we’ll 
be  seeing  Windows  7  SP1 
or,  as  I  prefer  to  think  of  it, 
Vista  SP4.  ■ 

Steven  J.  Vaughan-Nichols 
has  been  writing  about 
technology  and  the  business 
of  technology  since  CP/M- 
80  was  cutting  edge  and 
300bit/sec.  was  a  fast  Inter¬ 
net  connection  —  and  we 
liked  it!  He  can  be  reached 
at  sjvn@vnal.com. 
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GOESCORPORATE 

As  Facebook-like  apps  infiltrate  the  enterprise,  they’re  inte¬ 
grating  the  workforce  in  unforeseen  ways.  By  Mary  Brandel 


MICROSOFT  calls  it  Town- 
Square.  Deloitte  hosts 
D  Street.  IBM  has  its 
Beehive,  and  Best  Buy 
its  BlueShirt  Nation. 

No,  it’s  not  a  real 
estate  explosion.  In  industries  from 
retail  to  high  tech,  banking  and  manu¬ 
facturing,  companies  are  increasingly 
building  networks  behind  the  firewall 
where  employees  can  create  profiles 
and  connect  with  one  another  in  ways 
first  demonstrated  by  Linkedln,  Face- 
book  and  MySpace. 

“The  whole  Web  2.0  explosion  has 
moved  from  the  consumer  and  col¬ 
lege  student  world  to  professionals  in 
the  business  world,”  says  Amy  Shuen, 
author  of  Web  2.0:  A  Strategy  Guide. 
(O’Reilly  Media,  2008).  “Employees  are 
seeing  this  as  a  way  of  enlarging  their 
sphere  and  interacting  with  colleagues.” 

It’s  more  than  an  electronic  water 
cooler,  she  says.  Companies  may  start 
with  the  idea  of  helping  employees 
feel  more  connected,  but  that’s  just 
the  beginning.  With  easier  and  faster 


connections  among  people,  suddenly 
cross-division  collaboration  happens 
more  naturally,  leading  to  greater  in¬ 
novation.  “People  don’t  just  chat;  they 
connect  with  people  and  end  up  talk¬ 
ing  about  things  that  have  an  impact 
on  the  business,”  Shuen  says. 

Forrester  Research  Inc.  agrees  that 
2008  is  a  time  of  rapid  adoption  of  inter¬ 
nal  social  networking,  citing  software 
suites  that  include  social  networking 
features,  such  as  Awareness  Inc.’s 
Enterprise  Social  Media,  Jive  Soft¬ 
ware’s  Clearspace,  IBM’s  Lotus  Con¬ 
nections  and  Microsoft’s  SharePoint. 

Here  are  three  companies  that  are 
already  seeing  benefits  from  early 
adoption  of  internal  social  networking. 

-#  DELOITTE  LLP:  D  STREET 

The  idea  for  Deloitte’s  D  Street  began 
when  the  firm’s  talent  organization 
wanted  to  make  a  large  company  feel 
smaller.  In  addition,  it  wanted  to  cre¬ 
ate  an  environment  that  would  appeal 
to  its  mostly  younger  workforce.  At 
a  company  where  the  average  age  of 


employees  is  28,  “we  knew  we  had  chal¬ 
lenges  to  win  the  talent  war,”  says  Pa¬ 
tricia  Romeo,  the  leader  of  D  Street.  But 
in  January  2007,  when  the  group  began 
to  create  the  business  case  for  the  social 
networking  environment,  it  also  started 
to  envision  some  of  the  side  benefits  the 
initiative  might  engender. 

For  instance,  by  enabling  connec¬ 
tions  among  employees,  the  company 
could  more  easily  offer  flexible  work 
arrangements,  establish  virtual  teams, 
bring  new  employees  up  to  speed, 
improve  collaboration  and  increase  re¬ 
tention  among  people  who  hadn’t  felt  a 
strong  sense  of  belonging. 

After  getting  the  support  of  Deloitte 
leadership  and  partnering  with  inter¬ 
nal  IT,  communications  and  knowl¬ 
edge  management  groups,  the  team 
launched  the  alpha  version  of  D  Street 
in  June  2007,  basing  it  on  a  commercial¬ 
ly  available  collaborative  platform.  The 
initial  rollout  was  to  1,500  employees. 

Romeo  describes  D  Street  as  hav¬ 
ing  capabilities  similar  to  Facebook’s, 
except  that  profiles  are  prepopulated 
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with  basic  information,  includ¬ 
ing  name,  job  title  and  contact 
information.  Employees  can 
personalize  the  profiles  with 
things  like  photographs,  re¬ 
sumes,  work  and  community 
affiliations,  and  former  employ¬ 
ers.  D  Street  enables  workers 
to  introduce  colleagues  to  one 
another,  list  external  social  net¬ 
work  memberships  and  write 
blogs.  There’s  also  a  “guest 
book,”  in  which  visitors  can 
leave  comments. 

And  D  Street  helps  people  connect. 
An  employee  who  searches  on  “Web 
2.0,”  for  example,  will  find  other  peo¬ 
ple  interested  in  that  topic,  as  well  as 
their  connection  to  him. 

Since  few  employees  personalized 
their  profiles  initially,  early  adoption 
was  slow,  Romeo  says.  “People  aren’t 
going  to  go  in  as  readily  when  the  well 
is  75%  empty,”  she  explains.  But  with 
the  encouragement  of  leadership,  more 
people  got  involved,  and  they  were 
soon  demanding  access  to  the  rest  of 
the  organization. 

Next,  the  development  team 
tweaked  the  system  with  enhance¬ 
ments  such  as  reporting  capabilities 
and  launched  it  this  year  to  Deloitte’s 
shared  services  organization.  Current¬ 
ly,  all  46,000  members  of  the  organiza¬ 
tion  are  in  the  system. 

According  to  Romeo,  400  to  500  em¬ 
ployees  have  been  personalizing  their 
profiles  each  week,  meeting  a  goal  of 
involvement  by  25%  of  staffers  in  the 
first  eight  weeks. 

Avinash  Jhangiani,  a  senior  consul¬ 
tant  at  Deloitte  Consulting  LLP,  says  D 
Street  has  helped  him  expand  his  in¬ 
ternal  contacts  at  the  company,  which 
is  especially  helpful  because  he’s  a  mo¬ 
bile  worker.  For  instance,  he  says,  the 
organizing  committee  for  Deloitte’s 
community  service  initiative  found 
him  on  D  Street  via  a  simple  people 
and  keyword  search. 

“From  there,  I  was  asked  to  join  a 
volunteer  project  that  allowed  me  to 
share  my  passion  with  nonprofit  or¬ 
ganizations  and  help  them  build  their 
online  presence,”  he  says.  “What  a  cool 
way  to  enhance  my  personal  brand 
within  the  organization.” 

A  gap  still  exists  between  collabora¬ 
tion  evangelists  and  those  for  whom 


Deloitte’s 


“We  knew  we 
had  challenges 
to  win  the 
talent  war.” 


“it’s  just  not  part  of  their 
DNA,”  says  Romeo.  To  en¬ 
courage  reluctant  people,  the 
team  will  continue  educating 
employees  about  the  value  of 
collaborative  technology,  and 
it  plans  to  expand  the  tech¬ 
nology  to  increase  D  Street’s 
value  and  utility. 

That  brings  up  another 
challenge:  to  not  be  diverted 
by  some  users’  desire  to  add 
new  features.  “We’re  going 
slower  than  what  our  users 
would  like,  but  we  want  to  be  stra¬ 
tegic”  about  making  enhancements, 
Romeo  says. 

ROMEO’S  ADVICE:  Continue  to  build 
leadership  support,  even  after  the 
early-stage  buy-in.  “Make  sure  support 
is  there  throughout  the  organization,” 
she  says.  Once  the  platform  begins 
filling  with  valuable  content,  she  adds, 
“it’s  really  about  viral  adoption.” 


— #  IBM:  BEEHIVE 

Eight  years  ago,  IBM  created  Blue- 
Pages,  a  Web-based  corporate  direc¬ 
tory  that  includes  profiles  with  contact 
information,  employee  photographs,  \ 
name  pronunciation,  experience,  self-  \ 
descriptions,  bookmarks  and 
blog  entries,  as  well  as  “friend¬ 
ing”  and  information-tagging 
capabilities. 

“Very  early  on,  we  recog¬ 
nized  the  importance  of  con¬ 
necting  people  within  IBM 
and  moving  beyond  a  static 
view  of  the  individual,”  says 
Jeff  Schick,  vice  president  of 
social  software.  The  heav¬ 
ily  used  directory  includes 
450,000  employees  and  gets 
6  million  lookups  per  day. 

With  an  initiative  called 


IBM’s 

: 

‘  'oor  user 
adoption  is  rare¬ 
ly  ecause  users 
di  n’t  know  how 
but  rather  didn’t 
see  why.” 


Beehive,  IBM  is  experimenting  further. 
The  application  uses  the  code  base  of 
BluePages,  which  is  based  on  Lotus 
Connections,  but  it’s  a  separate  system. 

Beehive  is  intended  as  a  collab¬ 
orative  platform  that  emulates  the 
physical  work  environment,  where 
employees  display  personal  items 
like  photographs  and  trophies  and 
chat  about  last  night’s  game.  “We’ve 
added  new  dimensions  to  the  profile 
capability  to  create  the  old-fashioned 
camaraderie  of  the  office,”  Schick  says. 


The  idea  is  to  discover  whether  what 
Schick  calls  “the  water  cooler  effect” 
will  help  people  build  stronger  rela¬ 
tionships  and  thus  create  a  more  effec¬ 
tive  organization. 

For  Michael  Ackerbauer,  a  manager 
in  the  CIO’s  office  at  IBM,  the  results 
are  already  in.  He  learned  about  Bee¬ 
hive  a  year  ago,  and  “I  quickly  got 
hooked,”  he  says,  especially  since  he 
manages  a  team  of  developers  who 
work  remotely.  “It’s  valuable  for  the 
team  to  get  to  know  me  on  a  personal 
level,  and  I  like  to  get  to  know  them.  ” 

Ackerbauer  says  he  can  now  connect 
with  people  on  a  social  level  that’s  typ¬ 
ically  absent  when  working  remotely. 
Such  connections  help  his  teammates 
relate  to  one  another  like  human  be¬ 
ings  and  not  just  as  resources  or  assets. 
Just  recently,  Ackerbauer  says,  he  end¬ 
ed  up  speaking  at  a  technology  leader¬ 
ship  conference,  thanks  to  a  connec¬ 
tion  he  made  with  another  employee 
who  wouldn’t  have  otherwise  known 
he  had  expertise  in  the  subject  area. 

Despite  its  experimental  status, 
Beehive’s  user  population  has  grown  to 
38,000  in  nine  months,  mainly  through 
viral  adoption.  “People  find  it  through 
word  of  mouth,  when  others  blog  about 
it  or  bookmark  it,”  Schick 
says.  Adoption  is  strongest  in 
the  areas  of  product  manage¬ 
ment,  HR,  talent  management 
and  the  global  services  con¬ 
sulting  business. 

Because  Beehive  is  behind 
the  firewall,  Ackerbauer  says, 
people  feel  free  to  discuss  in¬ 
ternal  business  topics.  For  in¬ 
stance,  he  has  used  Beehive  to 
explain  his  views  on  the  topic 
of  breakthrough  thinking. 
“I’ve  had  people  come  up  to 
me  and  say,  ‘I  didn’t  know  you 


knew  all  that  stuff.  Can  we  talk  more?’  ” 
Ackerbauer  says.  “The  connections 
lead  to  collaboration,  which  leads  to 
innovation,  which  leads  to  transforma¬ 
tions  in  the  industries  IBM  serves.” 

SCHICK’S  ADVICE:  Be  aware  that 
one  size  does  not  fit  all.  To  increase 
involvement,  you  need  to  explain  the 
story  of  social  software  from  multiple 
perspectives. 

“What  appeals  to  some  will  make 
others  almost  cringe,”  he  says.  For 
instance,  new  employees  may  want  to 
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THE  WHYS  OF  SOCIAL  NETWORKING 


Employees  tend  to  have  at  least  one  of  four  goals  when  they  use  social  networks, 
according  to  Amy  Shuen,  author  of  Web  2.0:  A  Strategy  Guide.  The  first  two  are  common, 
she  says;  the  second  two  are  more  cutting-edge. 

In  their  pro¬ 
files,  people  can  list  skills,  expertise  and  experience,  as  well  as  previous  employ¬ 
ers  and  people  they  know.  As  with  Linkedln,  this  helps  simplify  the  job  of  locating 
people  with  the  knowledge  they  need.  “It’s  a  way  of  leapfrogging  quickly  through  several 
degrees  of  separation  to  find  out  who  knows  something  on  a  topic  that’s  of  importance 
to  you,”  Shuen  says.  This  is  particularly  useful  inside  multidivisional  and  multinational 
organizations,  she  says. 


2PANSI0N  OF  SOCIAL  CONNECTIONS  AND  BROADENING  OF  AFFILIATIONS. 
This  is  the  Facebook  model,  Shuen  says,  in  which  the  goal  is  to  get  to  know 
people  better  online  by  interacting  with  them  and  keeping  up  with  their  personal 
information.  “It’s  about  decreasing  your  social  distance  virtually,”  Shuen  explains. 


3  SELF-BRANDING  AND  EXPRESSION  OF  A  PERSONAL  DIGITAL  IDENTITY  AND 

REPUTATION.  Before  long,  people  get  creative  with  their  profiles  and  begin  to 
think  about  how  they  want  to  be  known  in  the  company.  This  is  along  the  lines 
of  a  Flickr  account  or  a  personal  blog  or  Web  page.  “Web  2.0  is  deeply  changing  the 
expectations  of  knowledge  workers  as  to  how  they  can  build  their  own  personal  brand 
within  a  corporation,  not  just  find  knowledge  they  need  or  socialize,”  Shuen  says. 

i iivifih'i/  1  Onsocial 

networks,  the  viral  distribution  of  knowledge  becomes  important.  For  instance, 
people  want  to  know  how  many  of  their  “friends”  have  recommended  a  video 
or  have  joined  a  community.  And  in  turn,  if  they  discover  something  cool,  they  want  to 
spread  the  word.  “This  sense  of  benchmarking  against  others  in  social  networking  is 
different  from  anything  we’ve  seer  lefore,”  Shuen  says. 

-MARYBRANDEL 


use  social  software  to  increase  their 
visibility,  while  veterans  may  be  moti¬ 
vated  to  keep  people  informed.  Simi¬ 
larly,  he  says,  focus  more  on  why  than 
on  how  in  your  training  program. 

“Knowledge  workers  today  have  no 
time  to  add  new  activities  to  their  day; 
they’re  looking  for  how  to  work  smart¬ 
er,”  Schick  says.  “Poor  user  adoption  is 
rarely  because  users  didn’t  know  how 
but  rather  didn’t  see  why.” 

*m'vm****a^ 

•  BEST  BUY:  BLUESHIRT  NATION 

Two  years  into  implementing  BlueShirt 
Nation  (BSN)  at  Best  Buy  Co.,  Gary 
Koelling  and  Steve  Bendt  see  internal 
social  networks  as  organic  entities. 
Many  of  the  goals  they  had  for  the  plat¬ 
form  in  2006  had  to  be  scrapped  once 
the  site  —  which  now  hosts  more  than 
20,000  participants  —  took  off. 

Now  senior  manager  of  social  tech¬ 
nology,  Koelling  was  a  creative  direc¬ 
tor  in  Best  Buy’s  advertising  organiza¬ 
tion  when  he  and  Bendt  first  thought 
of  using  technology  to  harvest  market¬ 


ing  ideas  from  store  employees.  “The 
promise  of  being  able  to  go  out  and  tap 
into  140,000  employees  and  use  com¬ 
puter  magic  to  do  it  was  really  attrac¬ 
tive  to  us,”  Koelling  says.  He  figured 
it  was  a  matter  of  gathering 
support,  getting  funding  and 
laying  out  the  steps  to  meet 
that  goal. 

Instead,  “we  got  schooled 
quickly  that  not  only  did  we 
not  know  about  [technology], 
we  also  didn’t  know  how  peo¬ 
ple  would  react  to  a  planned 
social  network,”  he  says. 

For  instance,  instead  of  pro¬ 
viding  answers  to  Koellmg’s 
and  Bendt’s  questions,  partici¬ 
pants  preferred  to  talk  about 
World  of  Warcraft  or  some¬ 
thing  funny  that  happened  at  work. 

BSN  is  based  on  open-source  soft¬ 
ware,  and  since  internal  IT  lacked 
those  skills,  Koelling  hired  a  devel¬ 
opment  firm.  The  network  was  pro¬ 
moted  virally;  all  participants  found  it 


through  referrals  or  word  of  mouth. 

On  the  site,  employees  can  create 
their  own  profiles  and  host  forums  on 
topics  of  their  choosing.  The  result, 
Koelling  says,  “is  more  scrumptious 
than  what  we  hoped  for.” 

Now  that  employees  are  connected, 
the  site  is  rich  with  idea  exchanges 
and  discussions  that  have  even  helped 
change  company  policies.  For  in¬ 
stance,  when  one  employee  posted  his 
thoughts  on  why  it  would  be  beneficial 
for  all  full-time  employees  to  have 
e-mail  access,  it  sparked  a  conversa¬ 
tion  that  eventually  led  to  a  shift  in 
policy  to  enable  just  that. 

To  Nick  Pfeifer,  a  retail  associate 
in  one  of  Best  Buy’s  Colorado  Springs 
stores,  the  site  provides  a  social  outlet, 
a  protected  place  to  discuss  work- 
related  topics  and  a  way  to  close  the 
gap  between  store  workers  and  corpo¬ 
rate  employees.  “As  with  any  big  com¬ 
pany,  it’s  easy  for  the  message  of  the 
customers  to  be  lost  when  you  don’t 
turn  your  attention  to  the  people  who 
interact  with  them  on  a  regular  basis,” 
he  says.  “Until  BSN,  there’s  always 
been  a  schism  between  the  two.” 

To  help  close  that  gap,  the  site  now 
includes  an  application  called  Loop 
Marketplace,  where  people  can  post 
new  ideas,  with  the  hope  that  a  Best 
Buy  executive  will  notice  one  and 
fund  it.  The  challenge  is  to  encourage 
more  execs  to  visit  it,  Koelling  says. 
“We’re  trying  to  find  ways  to  make 
visiting  the  Loop  Marketplace  a  part 
of  their  workflow.” 

There  have  been  plenty  of 
mistakes  along  the  way,  Koel¬ 
ling  says.  For  instance,  some 
users  wanted  to  adopt  a  sys¬ 
tem  in  which  people  received 
points  based  on  their  par¬ 
ticipation  on  the  network.  But 
once  he  initiated  that,  Koel¬ 
ling  learned  quickly  that  most 
people  thought  it  was  elitist. 

KOELLING’S  ADVICE:  Under¬ 
stand  that  on  a  social  network, 
everyone  shares  equal  status, 
even  the  person  who  runs  it. 
“When  the  user  tells  me,  ‘This  is  how  I 
want  to  use  it,’  I  have  to  do  whatever  I 
can  to  accommodate  that,”  he  says.  ■ 
Brandel  is  a  Computerworld  contribut¬ 
ing  writer  in  Newton,  Mass.  Contact  her 
at  marybrandel@verizon.net. 


Best  Buy’s 
GARY 
KOELLING: 

“[BlueShirt 
Nation]  is  more 
scrumptious 
than  what  we 
hoped  for.” 
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Software# 

That  Saves  Lives 


BI  software 
helps  doctors 
make  smart 
choices  for 
patients.  By 
Mary  K.  Pratt 

8f  HE  STATISTICS 
were  telling: 
15%  to  20%  of 


neurosurgery 
patients  de¬ 
veloped  infections  in  the 
drains  that  neurosurgeons 
implanted  to  draw  away  flu¬ 
ids,  a  complication  that  not 
only  threatened  lives,  but 
also  led  to  hundreds  of  thou¬ 
sands  of  dollars  in  treatment 
costs  annually. 

Dr.  Daniel  Stalhammar,  a 
neurosurgeon  for  40  years, 
believed  his  hospital,  Sahlg- 
renska  University  Hospital 
in  Gothenburg,  Sweden, 
could  do  better.  He  turned 
to  computers  for  help. 

That  may  not  be  surpris¬ 
ing,  but  his  choice  of  IT 
tools  is:  Stalhammar  picked 
business  intelligence  soft¬ 
ware  to  improve  patient 
outcomes  and  ultimately 
save  lives. 

“I  needed  to  handle  large 
databases  and  have  tools  to 
make  proper  decisions  on 
which  patients  were  to  be 
selected  for  specialized  and 
very  expensive  care,”  he  says. 

Stalhammar  used  Qlik- 
Tech  International  AB’s 
QlikView  to  analyze  multiple 
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A  Swedish  hospital  is  using  QlikView  to  analyze  patient  data  and 
likely  medical  outcom  s,  thus  reducinc  he  rate  of  complications. 


databases  containing  patient 
information  against  estab¬ 
lished  medical  measure¬ 
ments  and  likely  outcomes. 
This  tool  has  helped  the  hos¬ 
pital  reduce  its  rate  of  medi¬ 
cal  complications,  sparing 
patients  any  additional  pain 
and  problems  and  eliminat¬ 
ing  the  need  for  many  costly 
tests  and  treatments. 

“Certainly,  [this  accom¬ 
plishment]  would  be  possible 
without  technology,  but  that 


I  needed  to 
handle  large 
databases  and 
have  tools  to  make 
proper  decisions  on 
which  patients  were 
to  be  selected  for 
specialized  and  very 
expensive  care. 


DR.  DANIEL  STALHAMMAR, 

NEUROSURGEON, SAHLGRENSKA 
UNIVERSITY  HOSPITAL 


would  take  a  lot  of  work 
[from]  several  people  work¬ 
ing  continuously.  That  costs 
a  lot,  and  it  is  very  difficult  to 
keep  performance  24  hours 
a  day  on  the  highest  level. 
There  will  be  mistakes,  mis¬ 
understandings,  etc.,  result¬ 
ing  in  repeated  failures,”  says 
Stalhammar.  “By  automatic 
alerts  provided  by  QlikView, 
this  will  simply  not  happen.” 

This  innovative  use  of 
QlikView  software  earned 
QlikTech  International 
and  Stalhammar’s  project 
a  victory  in  the  Business  & 
Related  Services  category  in 
the  Computer-world.  Honors 
Program. 

To  be  sure,  Stalhammar 
was  no  stranger  to  using  soft¬ 
ware  prior  to  implementing 
the  BI  application.  He  had 
used  other  IT  tools,  such  as 
Excel,  to  help  sort  and  ana¬ 
lyze  data.  And  he  had  worked 
on  computerizing  patient 

Continued  on  page  30 


AT  A  GLANCE 

■  QlikTech  International  AB 
is  a  business  intelligence 
software  vendor  with  global 
headquarters  in  Lund,  Swe¬ 
den,  and  U.S.  headquarters 
in  Radnor,  Pa.  Its  product, 
QlikView,  has  more  than 
265,000  users  in  74  coun¬ 
tries.  QlikView  is  deployed  at 
Gothenburg,  Sweden-based 
Sahlgrenska  University 
Hospital,  northern  Europe’s 
largest  hospital. 


■  Dr.  Daniel  Stalhammar,  a 
neurosurgeon  for  40  years 
at  Sahlgrenska  University 
Hospital,  worked  with  Johan 
Rylander,  a  QlikTech  solu¬ 
tions  consultant,  to  deploy 
QlikView  to  analyze  patient 
data,  likely  outcomes  and 
treatment  options. 


■  St&fhammar’s  deployment 
and  use  of  QlikView  required 
limited  IT  support,  but  two  IT 
workers  will  work  part  time 
to  support  the  Department 
of  Orthopaedic  Surgery’s  de¬ 
ployment  and  management 
of  QlikView. 


■  The  cost  of  implementing 
QlikView  to  analyze  neuro¬ 
surgery  patient  data  was 
about  550,000  Swedish 
Krona  ($90,000  U.S.).  Its 
R0I:  QlikView  allows  care¬ 
givers  to  analyze  data  more 
completely  awl  more  quickly, 
helping  them  eliminate  infec¬ 
tions  and  save  lives.  It  also 
saves  money.  A  University  of 
Gothenburg  study  concluded 
that  eliminating  infections  in 
drains  implanted  in  patients 
to  draw  away  fluids  frees 
up  about  100  hospital  days, 
yielding  savings  of  about 
$400,000.  Meanwhile,  the 
Department  of  Orthopae¬ 
dic  Surgery  spent  about 
$165,000  on  its  QlikView 
implementation. 
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records  at  his  hospital. 

Such  experiences,  he  says, 
allowed  him  to  recognize 
how  computers  could  help 
doctors  make  critical  deci¬ 
sions  by  providing  them 
with  analysis  of  information 
that  they  just  couldn’t  ac¬ 
cess  quickly  enough  through 
manual  systems.  And  when 
he  saw  another  hospital  us¬ 
ing  QlikView,  he  saw  the 
possibilities  that  this  partic¬ 
ular  application  could  bring 
to  his  own  medical  work. 

“I  understood  how  ex¬ 
tremely  fast  they  could  make 
searches,  and  how  they 
could  combine  all  data  in  an 
illustrated  way,”  he  says. 

For  Stalhammar,  the 
choice  made  sense,  even 
though  his  hospital’s  admin¬ 
istration  used  other  BI  appli¬ 
cations  for  analyzing  data. 
QlikView  seemed  to  work 
faster  than  other  systems, 
he  says,  and  that  was  impor¬ 
tant,  since  the  information 
is  needed  to  make  quick, 
informed  decisions  on  pa¬ 
tient  care.  Plus,  QlikView 
presented  information  in  a 
visual  fashion  that  made  it 
easy  to  see  associations  be¬ 
tween  data. 

“You  could  see  these  pat¬ 
terns  with  other  tools,  but 
it  was  much  easier  with 
QlikView,”  Stalhammar 
says. 

PREDICTING  OUTCOMES 

Stalhammar  wanted  the 
application  to  process  medi¬ 
cal  tests  and  observations 
from  neurosurgery  patients 
alongside  likely  outcomes,  to 
determine  patterns  and  the 
best  treatment  protocols. 

“There  are  a  number  of 
predictors  for  head  injury  pa¬ 
tients.  You  can  weigh  them 
together  to  get  a  score,  and 
you  can  do  that  rather  early 
and  see  [whether  a]  patient 
is  in  danger  of  a  bad  develop¬ 
ment,”  Stalhammar  says. 


Good  Data  Remains 
Key  to  Success 


Even  before  deploying 
QlikView  to  analyze  data, 

Dr.  Daniel  Stalhammar  knew 
what  patient  information  he 
needed  to  make  critical  deci¬ 
sions  about  treatments. 

The  problem,  however, 
was  getting  that  information 
together  in  one  place  quick¬ 
ly,  because  the  data  resided 
in  various  databases  as  well 
as  on  medical  instruments, 
Stalhammar  says. 

This  might  seem  like  a  dif¬ 
ficult  problem,  but  in  reality, 
the  fact  that  Stolhammar 
already  knew  what  informa¬ 
tion  he  needed  was  critical 
not  only  to  his  patients,  but 
also  to  the  success  of  his 


Forrester  Research  analyst 


Boris  Evelson  says  a  suc¬ 
cessful  BI  initiative  starts 
with  building  the  right  data 
model.  “If  I  have  all  that 
right,  whatever  BI  vendor  I 
use  becomes  a  much  lower 
priority,”  he  says. 

In  fact,  in  his  2007  report 
“It’s  Time  to  Reinvent  Your 
BI  Strategy,”  Evelson  put 
“Proceed  with  data  gover¬ 
nance  and  data  stewardship” 
at  No.  2  on  his  list  of  10  best 
practices  for  kicking  off  a 
BI  effort,  just  after  picking 
a  senior  business  executive 
sponsor. 

Evelson  also  wrote,  “Most 
reporting  initiatives  fail 
because  end  users  cannot 
agree  on  common  defini¬ 
tions.” 

-  MARY  K.  PRATT 


The  predictors  include  a 
patient’s  age,  cranial  pres¬ 
sure  and  white  blood  cell 
counts.  Taken  together, 
those  metrics  can  indicate 
potentially  life-threatening 
complications. 

Stalhammar  worked  with 
the  hospital  IT  staff  to  devel¬ 
op  the  tool,  turning  to  Johan 
Rylander,  a  solutions  consul¬ 
tant  at  QlikTech,  for  support. 
Although  Stalhammar’s  use 
of  QlikView  isn’t  typical, 
pulling  together  the  appli¬ 
cation  wasn’t  particularly 


Business 
intelligence  is 
definitely  exploding 
in  every  market 
segment,  because 
intelligence  is  the 
main  competitive 
differentiator 
these  days. 


BORIS  EVELSON,  ANALYST. 
FORRESTER  RESEARCH  INC. 


tricky,  Rylander  says. 

“All  the  data  sources  were 
already  defined.  Dr.  Stal¬ 
hammar  already  knew  what 
he  needed,  and  I  helped  him 
to  translate  his  ideas,”  ex¬ 
plains  Rylander. 

But  challenges  still  arose, 
of  course.  Stalhammar 
wanted  to  display  several 
lab  results  in  a  single  chart, 
yet  those  lab  results  all  used 
different  scales.  Those  differ¬ 
ences  forced  Rylander  to  find 
ways  to  manipulate  the  code 
to  create  accurate,  compatible 
and  understandable  displays. 

It  was  also  a  challenge  to 
integrate  pictures,  which 
take  up  a  lot  of  memory, 
Rylander  says.  To  deal  with 
that,  he  put  in  links  to  pic¬ 
tures,  allowing  users  to  call 
up  only  the  images  needed 
without  putting  them  in  the 
QlikView  file  itself. 

Stalhammar  first  started 
using  QlikView  in  2001.  But 
after  he  retired  in  2007,  the 
project  lost  momentum  —  a 


fate  that  can  befall  many  IT 
initiatives  that  lack  a  project 
champion  to  lobby  for  them. 

Meanwhile,  Stalhammar’s 
colleagues  in  other  depart¬ 
ments  have  expressed  inter¬ 
est  in  the  QlikView  system 
but,  he  says,  “the  doctors  in 
Sweden  have  been  remark¬ 
ably  slow  to  adopt  this  new 
technology.” 

There  is  some  movement, 
however.  Dr.  Peter  Nyberg, 
chief  of  the  Department  of 
Orthopedic  Surgery  at  Sahl- 
grenska  University  Hospital, 
is  following  Stalhammar’s 
example  and  using  Qlik¬ 
View  to  analyze  patient  data 
to  improve  care. 

“My  interest  is  to  get 
quick  and  reliable  analysis 
from  a  quality  system,”  Ny¬ 
berg  says,  explaining  that 
in  the  past,  there  have  been 
challenges  in  connecting  the 
different  hospital  databases 
and  getting  useful  analysis 
from  them. 

Despite  those  earlier 
challenges,  Nyberg  decided 
to  try  QlikView  based  on 
Stalhammar’s  experience. 

“Why  should  hospital  per¬ 
sonnel  take  hours  or  weeks 
[finding  that  data]?  What 
they  really  want  is  to  have 
the  results,”  Nyberg  says. 

Boris  Evelson,  an  analyst 
at  Forrester  Research  Inc., 
says  he’s  not  surprised  by  the 
doctors’  use  of  QlikView.  BI 
tools  are  reaching  into  every 
market  segment,  Evelson 
says,  because  they  not  only 
help  improve  productivity 
and  efficiency,  but  also  help 
organizations  to  remain 
competitive. 

“Business  intelligence 
is  definitely  exploding  in 
every  market  segment,”  he 
says,  “because  intelligence 
is  the  main  competitive  dif¬ 
ferentiator  these  days.”  ■ 
Pratt  is  a  Computerworld 
contributing  writer  in 
Waltham,  Mass.Contact  Her¬ 
at  marykpratt@verizon.net. 
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■  FUTURE  WATCH 


The  New  Face 
Of  R&D 


IBM,  HP  and  Microsoft  all 
talk  about  ‘open  innovation.’ 
Is  it  a  feel-good  catchphrase 
or  the  R&D  strategy  of  the 
future?  By  Gary  Antnes 


Is  R&D  going  down  the 
tubes  in  the  U.S.? 

Pundits  have  taken 
to  bemoaning  a  retreat 
by  U.S.  industry  from 
basic  research.  And  indeed, 
it’s  easy  to  find  research  labs 
whose  glory  days  have  come 
and  gone  —  Bell  Labs  comes 
to  mind.  But  consider  this: 
IBM,  Microsoft  Corp.  and 
Hewlett-Packard  Co.  col¬ 
lectively  spend  $17  billion 
annually  on  research  and 
development. 

That’s  right:  $17  billion. 
While  much  of  that  is  for 
product  development,  hun¬ 
dreds  of  millions  flow  into 
areas  like  computational  bi¬ 
ology  and  nanotechnology, 
which  may  take  years  to 
bear  fruit,  if  they  ever  do. 

It’s  significant  that  all 
three  companies  have  recent¬ 
ly  seen  major  changes  like 
these  in  their  research  labs: 

■  In  July  2007,  IBM 
named  a  new  research 
director  and  announced 
plans  to  invest  more  than 
$100  million  in  each  of  four 
long-term  research  projects. 

■  A  month  later,  HP 
brought  in  a  new  research 
director  and  launched  a 
strategy  based  on  five  mega¬ 
areas  of  IT  research. 

■  And  this  year,  Microsoft 


announced  that  it  would 
greatly  expand  its  research 
campus  in  Beijing  and  open  a 
new  lab  in  Cambridge,  Mass. 

Although  their  research 
agendas  are  strikingly  dif¬ 
ferent,  the  three  have  one 
important  thing  in  common: 
They’re  all  increasingly 
reaching  out  to  collaborate 
with  universities,  customers 
and  other  companies.  With 
that  comes  a  new  openness 
that  can  enrich  and  speed 
the  flow  of  ideas  into  the 
marketplace. 

“R&D  is  basically  seek¬ 
ing  out  new  knowledge,  and 
the  question  is,  Where  are 
the  good  ideas?”  says  Henry 
Chesbrough,  executive  direc¬ 
tor  of  the  Center  for  Open 
Innovation  at  the  University 
of  California,  Berkeley.  “After 
World  War  II,  the  good  ideas 
were  loaded  up  in  a  small 
number  of  large  companies.” 
Universities  generally  dis¬ 
dained  working  with  indus¬ 
try,  instead  relying  on  the 
government,  which  was  eager 
to  fund  research  that  might 
help  win  the  Cold  War. 

But  once  the  Cold  War 
was  won,  much  of  the  federal 
largesse  dried  up.  “Product 
markets  got  more  competi¬ 
tive,  and  those  big  companies 
couldn’t  sustain  the  long- 


h(  iew  direc¬ 
tor  of  HP  La  s 


term  investments  in  research 
that  they  could  in  the  earlier 
period,”  says  Chesbrough. 

Into  the  breach  stepped 
smaller  technology  compa¬ 
nies,  universities,  companies 
in  Europe  and  Asia,  and  even 
customers.  “So  today,  no  one 
has  locked  up  the  really  good 
ideas,”  Chesbrough  notes. 

He  says  HP,  IBM  and  Mi¬ 
crosoft  are  ail  demonstrating 
a  move  toward  “open  innova¬ 
tion,”  which  means  that  good 
ideas  come  from  both  outside 
and  inside  and  that  compa¬ 
nies  take  the  fruits  of  those 
ideas  to  market  via  both  in¬ 
ternal  and  external  paths. 

HP  LABS:  FIVE  BIG  BETS 

In  March,  less  than  a  year  af¬ 
ter  it  hired  Prith  Banerjee  as 
director  of  HP  Labs,  HP  an¬ 
nounced  that  it  would  shift 
its  focus  from  a  large  number 
of  smaller  research  projects 
to  a  few  “big  bet”  projects  in 
five  areas:  information  explo¬ 
sion,  dynamic  cloud  servic¬ 
es,  content  transformation, 
intelligent  infrastructure  and 
sustainability.  “These  are  the 
big  research  challenges  that 
we  think  are  most  important 
to  our  customers  in  the  next 
decade,”  says  Banerjee,  for¬ 
merly  the  engineering  dean 
at  the  University  of  Illinois 
at  Chicago. 

Explains  Banerjee,  “We 
had  taken  the  approach  of 
letting  1,000  flowers  bloom 
and  hoping  a  few  would 
pan  out.  We’d  have  two  or 
three  people  on  a  project, 
but  now  we’ll  have  20  to  30 
large  projects,  each  with  10 
to  20  researchers  working  in 
teams.”  HP  Labs  has  a  total 
of  600  researchers  in  seven 
labs  around  the  world. 

Some  observers  have  sug¬ 
gested  that  the  new  strategy 
was  yet  another  retreat  from 
long-term  basic  research. 

But  Banerjee  insists  other-  . 
wise.  In  the  past,  he  says, 
less  than  10%  of  HP  Labs’ 
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budget  went  to  exploratory, 
or  “blue  sky,”  research.  Un¬ 
der  the  new  plan,  spending 
will  be  split  evenly  among 
such  research,  applied  re¬ 
search  and  advanced  prod¬ 
uct  development. 

A  major  thrust  is  more 
collaboration  with  other 
companies,  universities  and 
venture  capitalists.  The 
HP  IdeaLab  Web  site  gives 
would-be  partners  sneak 
previews  of  prototypes.  In 
May,  HP  asked  universities 
for  ideas  on  collaboration  in 
its  five  research  areas. 

Of  course,  this  strategy  is 
backed  by  bottom-line  busi¬ 
ness  sense.  It  not  only  allows 
HP  to  cull  ideas  from  a  wider 
pool;  it  also  lets  it  mitigate 
risk  and  share  research  costs. 

Still,  Chesbrough  finds  it 
interesting  that  HP  “would 
bring  in  not  a  career  engi¬ 
neer  or  scientist  from  the 
company,  but  an  academic. 
Instead  of  the  go-it-alone  at¬ 
titude,  I  see  this  as  evidence 
of  a  much  more  collabora¬ 
tive,  distributed  process.” 

IBM:  ‘COLLABORATORIES’ 

IBM  has  given  up  the  in¬ 
sular  approach  to  research 
that  marked  its  earlier  years, 
Chesbrough  says.  While  the 
company  remains  strong  in 
basic  research  in  materials, 
semiconductors  and  the  like, 
it  has  turned  its  efforts  more 
toward  services  and  support 
technologies,  he  says. 

Shortly  after  John  Kelly 
ascended  to  the  top  of  IBM 
Research,  he  announced  that 
IBM  would  spend  more  than 
$100  million  over  three  years 
on  each  of  four  “high  risk” 
basic  research  areas:  nano¬ 
technology,  cloud  comput¬ 
ing  and  Internet-scale  data 
centers,  a  new  integrated 
systems  and  chip  architec¬ 
ture,  and  managing  business 
integrity  through  advanced 
math  and  computer  science. 
Another  15  research  topics 


would  be  funded  at  $30  mil¬ 
lion  to  $50  million  each,  and 
many  more  at  lesser  levels, 
he  said.  And  IBM  would  in¬ 
crease  collaboration. 

Part  of  the  new  game  plan 
is  “collaboratories,”  mostly 
small,  regional  joint  ventures 
with  universities,  foreign 
governments  or  commercial 
partners  that  tap  into  local 
skills,  funding  and  sales 
channels  to  quickly  get  new 
technology  into  the  market¬ 
place.  For  example,  in  Febru¬ 
ary,  IBM  said  it  would  form 
a  nanotechnology  collabora- 
tory  with  Saudi  Arabia  to 


meanings  in  structured  and 
unstructured  information. 
The  tool,  he  explains,  “will 
look  at  trends  and  biases 
within  a  culture  to  predict 
whether  a  particular  brand 
of  chocolate  will  be  bought.” 

MSR:  ACADEMIC  MODEL 

Microsoft  Research  Direc¬ 
tor  Richard  Rashid  makes 
no  secret  of  his  operating 
model:  “The  work  we  do  is 
not  that  different  from  what 
you’d  find  at  Stanford  or 
Berkeley  or  Carnegie  Mel¬ 
lon,  in  the  sense  that  it  is 
publishable  basic  research 
that  is  peer-reviewed.  Our 
research  may  have  a  short¬ 
term  impact  on  the  product 
groups,”  he  says,  “but  that’s 
not  why  we  do  the  work;  it’s 
a  consequence  of  the  work.” 

Because  Rashid’s  philoso¬ 
phy  is  to  first  do  good  com¬ 
puter  science  and  then  see 
where  it  might  fit,  he  focuses 
first  on  people.  An  example 
is  the  new  Cambridge  lab. 
“You  don’t  establish  a  lab 
without  the  right  person  to 
do  it,”  he  says.  “We  had  a 
great  researcher,  Jennifer 
Chayes,  and  she  was  really 
excited  about  a  lab  in  that 
area.  If  it  wasn’t  for  her  ener¬ 
gy  and  initiative,  it  probably 
wouldn’t  have  happened.” 

To  be  sure,  many  of  the 
272  research  projects  named 
on  the  MSR  Web  site  are  de¬ 
signed  with  major  product 
lines  like  Windows  or  Xbox 
in  mind.  But  many  seem  to 
have  no  likely  application  in 
anything  the  company  sells 
today. 

“We  are  growing  outward 
into  areas  where  computer 
science  intersects  with 
other  disciplines,  like  AIDS 
research,  computational  biol¬ 
ogy  and  the  environment,” 
says  Rashid.  “We  are  increas¬ 
ingly  engaged  where  com¬ 
puter  science  is  making  a  big 
difference  in  the  way  other 
sciences  are  done.”  ■ 


develop  and  market  water  de¬ 
salination,  solar  energy  and 
petrochemical  applications. 

Mark  Dean,  a  vice  presi¬ 
dent  at  IBM  Research,  says 
IBM  is  adding  some  big  ex¬ 
ploratory  projects.  “For  ex¬ 
ample,”  he  says,  “how  does 
DNA  interact  with  carbon 
nanotubes  for  self-assembly 
of  circuits?” 

Dean  says  IBM  is  increas¬ 
ingly  collaborating  with 
customers.  For  instance,  it  is 
working  with  “a  prominent 
candy  company”  to  apply  a 
prototype  Web  analysis  tool 
to  find  hidden  patterns  and 


An  atomic  force  microscope  shows  fat  the 

y  How  squares),  ea  iOnm,  or  about  150  atoms,  wide. 


Memristors, 

Anyone? 

When  asked  for  evidence 
that  Hewlett-Packard  has 
not  abandoned  “blue  sky” 
research,  HP  Labs  Director 
Prith  Banerjee  cites  HP’s 
recent  experiments  proving 
the  existence  of  the  mernris- 
tor  (short  for  memory  resis¬ 
tor),  a  tiny  eli  stronic  circuit 
element  that  can  signal  and 
remember  information  by 
changing  its  resistance. 

No  one  knows  where  this 
might  lead,  but  HP  says  the 
memristor  may  be  used  in 


very  energy-efficient  circuits 
and  in  nonvolatile  memories 
that  retain  data  after  the 
system  is  turned  off,  which 
would  enable  computers  to 
boot  up  instantly. 

Stanley  Williams,  who  was 
part  of  the  team  th  t  proved 
the  memristor’s  existence, 
said  at  the  time  of  the  break¬ 
through,  “To  find  something 
new  and  yet  so  fundamental 
in  the  mature  field  of  elec¬ 
trical  engineering  is  a  big 
surprise,  and  one  that  has 
significant  implications  for 
the  future  of  computer  sci¬ 


ence. 


GARY  ANTHES 
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■  SECURITY  MANAGER’S  JOURNAL  i  C.J.  KELLY 


If  I  Were  in  Charge 
Of  the  World 

Exposure  to  state  government  revealed 
things  to  admire,  but  there  is  much  that 
could  be  done  to  make  it  better. 


Leaving  state 
government 
has  been  bitter¬ 
sweet.  There 
were  frustra¬ 
tions  aplenty,  but  I  was 
always  impressed  by  the 
dedication  of  many  of  the 
rank-and-file  employees.  I 
feel  privileged  to  have  met 
and  made  friends  with  so 
many  of  them. 

I  certainly  learned  a 
lot  about  state  govern¬ 
ment:  the  classification 
of  employees,  the  rules 
and  regulations  related  to 
employment,  the  budget¬ 
ing  process,  and  the  end¬ 
less  politics.  Politics  was 
always  my  nemesis  in  my 
time  in  government,  but  in 
the  end,  it  was  the  feeling 
that  I  was  powerless  to  ef¬ 
fect  necessary  change  that 
drove  me  out. 

I  never  would  have  last¬ 
ed  as  long  as  I  did  if  not  for 
my  boss,  who  empowered 
me  to  do  my  job  as  I  saw 
fit.  Micromanagers  exist  in 
the  private  sector,  but  they 
seem  more  numerous  in 
government.  After  nearly 
four  years  in  government, 

I  feel  somewhat  qualified 
to  make  recommendations 
for  improvement.  Topping 
my  wish  list  is  that  all  gov¬ 


ernment  workers  should 
have  a  boss  like  mine. 
Unfortunately,  the  highly 
structured  personnel  sys¬ 
tem  leaves  little  room  for 
things  like  empowerment 
and  autonomy. 

But  in  a  rigid  bureau¬ 
cracy,  real  change  has  to 
come  from  the  top.  The 
CIO  or  CISO  must  have 
a  vision  and  the  stamina 
to  fight  for  money.  We’re 
talking  about  protecting 
taxpayers’  personal  data. 
Even  the  most  tightfisted 
legislators  can  be  made  to 
see  that  these  investments 
are  worthwhile,  but  you 
have  to  wear  them  down. 
That  takes  a  leader  who’s  a 
politician  with  a  backbone. 

My  state  hasn’t  been 
lucky  in  this  area.  It  has 
gone  through  three  CISOs 
in  four  years.  In  a  perfect 
world  (the  one  that  I’d  de¬ 
sign),  a  state’s  top  security 
officer  would  report  to  the 
governor  and  have  a  sepa¬ 
rate  budget.  The  legislature 
would  listen  to  him  and  not 
stand  in  the  way  of  making 
security  a  top  priority  for 

■  Politics  was 
always  my 
nemesis. 


every  state  agency. 

Statutes  that  are  now 
followed  to  the  letter 
would  undergo  common- 
sensical  revision.  For 
example,  there’s  a  require¬ 
ment  that  an  infosec  of¬ 
ficer  be  appointed  for  each 
state  agency.  Currently, 
just  about  anybody  can  be 
named  to  the  post  —  even 
if  the  person  has  never 
used  a  computer. 

In  my  world,  money 
would  be  available  for 
training,  and  initiative 
would  be  rewarded. 

BOTH  SIDES  NOW 

In  many  ways,  I  would  like 
government  to  work  more 
like  the  private  sector.  But 
from  experience,  I  know  it 
can’t  be  a  duplicate.  Politi¬ 
cians  and  taxpayers  aren’t 
the  same  as  executives  and 
shareholders. 

And  the  truth  is  that 
the  private  sector  would 
be  even  better  if  it  could 
inspire  the  sort  of  dedica¬ 
tion  and  commitment  I 
have  seen  in  government 
workers.  We  all  want  to 
hire  people  who  will  be 
creative  problem-solvers. 
The  government  has  them 
in  spades.  I  have  seen  them 
do  the  impossible  time  and 
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again  with  limited  funds 
and  resources.  And  they 
keep  at  it  despite  being 
paid  considerably  less  than 
they  would  receive  else¬ 
where.  Something  other 
than  money  and  prestige  is 
motivating  these  troupers. 

At  one  point,  I  threw  my 
hat  in  the  ring  for  the  top 
infosec  job,  and  I  almost 
snagged  it.  But  my  boss 
warned  me,  “You  really 
don’t  want  to  get  involved 
in  politics  at  that  level.” 
Silly  me.  He  was  absolutely 
right.  I  was  only  thinking 
about  security,  not  the 
likelihood  that  I  would  be 
consigning  myself  to  even 
more  frustration  than  I 
was  already  feeling.  I  prob¬ 
ably  would  have  ended 
up  the  fourth  CISO  to  get 
kicked  to  the  curb  for  all 
the  wrong  reasons. 

But  there  is  something 
compelling  about  having 
the  opportunity  to  draft 
the  information  security 
vision  for  our 
state  and  then 
negotiating  all 
the  politics  to 
bring  the  legisla 

ture  and  gover-  _ 

nor  on  board. 

Now  I  have  made  my 
choice  and  moved  back  to 
the  private  sector.  But  I 
harbor  hope  that  I  can  still 
effect  change,  from  the 
outside.  Wish  me  luck.  ■ 
This  week’s  journal  is  writ¬ 
ten  by  a  real  security  man¬ 
ager,  “CJ.  Kelly,”  whose 
name  and  employer  have 
been  disguised  for  obvious 
reasons.  Contact  her  at 
mscjkelly@yahoo.com. 


OJOIN  in 

To  join  in  the  discussions 
about  security,  go  to 

blogs/security 
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■  OPINION 


Make  a  Statement 


ISSION  STATEMENTS  help  define  an  organi¬ 
zation’s  direction  and  inspire  employees  to 
achieve  corporate  goals.  Unfortunately,  count¬ 
less  mission  statements  are  meaningless,  forget¬ 
table  and  totally  ineffective.  Many  are  merely  an  uninspiring 
collection  of  buzzwords  that  could  have  been  written  by  Dil- 
bert’s  boss.  If  that  describes  yours,  you  have  work  to  do! 


Good  mission  state¬ 
ments  require  a  deep 
understanding  of  the  or¬ 
ganization  and  significant 
amounts  of  effort,  but  they 
can  last  for  years.  An  or¬ 
ganization  that  publishes  a 
new  mission  every  year  is 
undoubtedly  in  chaos. 

Creating  an  effective 
mission  statement  requires 
that  you  get  five  things 
right: 

Input.  Before  creating  a 
mission  statement,  solicit 
input  from  a  broad  spec¬ 
trum  of  the  organization. 
Survey  people  at  all  levels, 
across  multiple  business 
units  and  from  all  parts 
of  the  world  where  you 
do  business.  Important 
customers  and  strategic 
suppliers  can  also  provide 
different  and  valuable  per¬ 
spectives. 

Team.  Creating  a  mis¬ 
sion  statement  with  a  large 
team  is  usually  an  exercise 
in  frustration.  Most  team 
members  will  have  slightly 
different  ideas  about  what 
is  important.  Large  teams 
inevitably  attempt  to  hon¬ 
or  multiple  viewpoints  and 
consume  large  amounts  of 


time  wordsmithing  rather 
than  adding  value.  The  re¬ 
sulting  mission  statements 
are  often  long,  overly  gen¬ 
eralized  and  ineffective. 
Though  it’s  necessary  to 
solicit  ideas  from  a  wide 
audience,  it’s  ultimately  up 
to  the  leader  and  a  few  key 
staffers  to  design  a  mission 
statement  that  accurately 
defines  the  organization’s 
future  direction. 

Message.  Mission  state¬ 
ments  are  grounded  in  re¬ 
ality  while  simultaneously 
motivating  staffers.  A  good 
mission  statement  guides 
an  organization  by  provid¬ 
ing  a  point  to  steer  toward 
and  powerful  inspiration. 
In  the  third  century  B.C., 

■  In  the  third 
century  B.C., 
Chinese  general 
Xiana  Yu  created 
the  ultimate  mis¬ 
sion  statement  by 
burning  his  ships 
and  destroying  his 
troops’  cooking 
pots. 


Chinese  general  Xiang 
Yu  was  facing  defeat  in  a 
rebellion  against  Emperor 
Qin.  He  created  the  ulti¬ 
mate  mission  statement 
by  burning  his  ships  at  the 
Zhang  River  and  destroy¬ 
ing  his  troops’  cooking 
pots.  The  army  had  to  win 
to  survive. 

Process.  A  good  mission 
statement  can’t  be  created 
in  a  single  meeting.  It’s  the 
result  of  a  multistage  cre¬ 
ative  process  that  involves 
brainstorming,  discussing, 
refining  and  redesign¬ 
ing.  Resist  the  impulse  to 
publish  the  first  version  of 
a  new  mission  statement. 
Test  a  draft  version  with 
a  wide  audience,  then  get 
feedback  and  buy-in  from 
a  variety  of  employees, 
departments,  geographical 
locations  and  key  custom¬ 
ers.  Reiterate  the  creative 
process  as  necessary. 

Exposure.  Communicate 
the  mission  statement 
broadly  and  repeatedly. 
People  often  need  to  hear 
a  message  multiple  times 
to  understand  its  ramifi¬ 
cations  for  their  depart¬ 
ments.  One  Fortune  500 


company  had  been  wildly 
successful  in  the  U.S.,  but 
it  determined  that  future 
growth  would  primarily 
come  from  Asia.  The  CIO 
and  her  staff  developed  and 
communicated  a  new  IT 
mission  statement  around 
“global  IT.”  After  months 
of  consistently  communi¬ 
cating  the  opportunities 
and  requirements  ahead, 
the  CIO  was  distressed 
when  the  head  of  network 
operations  asked  the  obvi¬ 
ous:  whether  his  depart¬ 
ment  needed  to  be  design¬ 
ing  a  worldwide  network. 

An  easy  way  to  evalu¬ 
ate  the  effectiveness  of 
your  organization’s  mis¬ 
sion  statement  is  to  notice 
how  your  employees  use 
it.  If  they  quote  it,  refer  to 
it  when  making  business 
trade-offs  or  regard  it  as  a 
corporate  touchstone,  it’s 
a  winner.  If  it  becomes  an 
integral  part  of  your  orga¬ 
nization’s  decision-making 
process,  it’s  golden.  But 
if  it’s  filed  away  in  desk 
drawers  and  forgotten,  it’s 
useless.  Pull  it  out,  dust  it 
off,  and  try  again. 

Don’t  take  shortcuts 
when  creating  a  vision 
designed  to  inspire  your 
employees  and  entice  cus¬ 
tomers.  Take  the  time  and 
effort  to  develop  a  compel¬ 
ling  mission  statement  that 
will  power  the  transforma¬ 
tion  every  organization 
needs.  ■ 

Bart  Perkins  is  managing 
partner  at  Louisville,  Ky.- 
based  Leverage  partners 
Inc.,  which  helps  organiza¬ 
tions  invest  well  in  IT.  Con¬ 
tact  him  at  BartPerkins@ 
LeveragePartners.com. 
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MARKETPLACE 


♦  API  supports  .NET,  C++, 
Java,  databases,  etc. 
New  .NET  Spider  API 


Choice  for  Text  Retrieval®  since 


+  "Bottom  line:  dtSearch  manages  a  terabyte  of  text  in  a 
single  index  and  returns  results  in  less  than  a  second" 

-  InfoWorld 

♦  "For  combing  through  large  amounts  of  data,"  dtSearch 
"leads  the  market"  -  Network  Computing 

♦  dtSearch  "covers  all  data  sources  ...  powerful  Web-based 
engines"  -  eWEEK 

♦  dtSearch  "searches  at  blazing  speeds"  -  Computer  Reseller 
News  Test  Center 

See  www.dtsearch.com  for  hundreds  more  reviews, 

and  hundreds  of  developer  case  studies 


N 

mm 


..... 

Contact  dtSearch  for  fufly-funaiona!  evaluations 


1-800-IT-FINDS  •  www.dtsearch.c6m 


♦  file  parsers  /  converters 
for  hit-highlighted 
display  of  all  popular 
file  types 


♦  Spider  supports  static 
and  dynamic  web  data; 
highlights  hits  while 
displaying  links, 
formatting  and  images^ 
intact 


Terabytes  of  Text 


♦  dozens  of  indexed, 
unindexed,  fielded  data 
and  full-text  search 
options  (including 
Unicode  support  for 
hundreds  of 

international  languages) 


Your  message  works  in  the  Marketplace  section! 


PfUNTMEDIA  SERVICES 


To  advertise,  call  212-655-5220  or  email  temerson@ven.com 


Server 

room 


E-mail  FreeBook@ITWatchDogs.com  with  your  mailing  address 
or  call  us  at  5  2-257-1462. 


* 


Imagine  getting  as  many  leads  as  you  need,  at 
the  right  price.  All  qualified.  All  interested.  No  risk. 
VentureDirect,  Worldwide  makes  that  happen  tor  our 
clients  every  day  using  search  engines  and  onlin 
affiliates.  You  pay  only  for  real  live  sales  leads. 


Our  cost  per  lead  programs  can  send  traffic 
web  site,  to  customized  web  pages  we  creati 
or  to  web  pages  with  multiple  offers.  Const 
and  business  professionals  complete  your  unique 
qualifying  questions/form;  producing  leads  in  real 
time,  at  a  fixed  cost. 


If  you  are  a  nr  onal  or  international 
marketer,  and  require  highly 
qualified  sales  leads,  call  today 

212-655-5123 

or  email 

rbaiimer@ven.com 

VENTURED!  rod 


W  O  R  L 


W  I  D 


www.venturedirect.com 
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Unhappy  Execs 

While  61%  of  high-level  executives  are  satisfied  with  their 
current  jobs,  there’s  less  satisfaction  among  IT  profession¬ 
als.  According  to  recruiter  ExecuNet  Inc.’s  June  survey  of  1,597  high- 
level  executives  (average  annual  salary:  over  $206,000),  those  with 
the  title  of  chief  financial  officer  or  comptroller  are  the  most  likely  to 
be  satisfied,  and  those  in  IT  are  the  least  likely,  at  just  53%. 


The  reasons  most  often  cited 
for  being  unhappy  at  work: 


Limited  advancement 
opportunities 

12.8% 

Lack  of  challenge/ 
personal  growth 

12.3% 

Compensation 

11.7% 

Stress  level 

7.7% 

Job  security 

7.7% 

2^ 

1 

Percentage  of  U.S.  workers  who  say  they 
/  check  their  work  e-mail  or  voice  mail  while 
on  vacation.  That’s  up  from  16%  in  an  ear- 
/  U  lier  iteration  of  the  same  survey,  in  2005. 

SOURCE:  EXPEDIA. COM-SPONSORED  HARRIS  INTERACTIVE  ONLINE  SURVEY 

OF  1,617  EMPLOYED  ADULTS,  MARCH  2008 

frext,  Pie 

HR  managers  offer  the  wackiest 
interview  blunders  they’ve  seen. 


Would  you  hire  someone 
who  told  you  during  the  in¬ 
terview  that  he  was  hred  for 
beating  up  his  boss? 

Probably  not,  and  the  human  re¬ 
sources  professional  who  told  this 
story  agreed:  This  is  not  a  good 
candidate.  In  the  2008  version  of 
its  annual  survey  of  HR  pros  and 
hiring  managers  on  interview  do’s 
and  don’ts,  CareerBuilder.com 
also  presented  these  true  stories 
-  all  surefire  ways  to  not  get  hired: 

■  Take  a  call  on  your  cell  phone 
and  then  ask  the  interviewer  to 
leave  her  own  office  because  it’s 
a  private  conversation. 

■  Tell  the  interviewer  you  won't 
be  able  to  stay  with  the  job  long 
because  you  might  get  an  inheri¬ 
tance  if  your  uncle  dies,  and  he’s 
“not  looking  good." 


The  most  common  detrimen¬ 
tal  mistakes  candidates  can 
make  during  job  interviews: 

Dress  inappropriately 

51% 

Speak  negatively 
about  a  current  or 
former  employer 

Appear  disinterested 

48% 

Seem  arrogant 

44% 

Fail  to  provide 
specific  answers 

30% 

Fail  to  ask  good 
questions 

29% 

. 

ONLINE  SURVEY  OF  OVER  3.000 

PROFESSIONALS.  200S 

■  Turn  down  an  offer  of  food 
because  you  don't  want  to  line 
your  stomach  with  grease  before 
going  out  drinking. 

■  Flush  the  toilet  during  a  tele¬ 
phone  interview. 
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IT  careers 


Sterling  Commerce  (America), 
Inc.  is  seeking  qualified  profes¬ 
sionals  to  fill  Senior  Software 
Support  Engineer  positions  in 
Irving,  Texas.  Troubleshoot  and 
resolve  or  recommend  solutions 
to  complex  software  problems. 
Develop,  analyze,  modify,  and 
test  program  logic  for  software 
applications  and  products. 
Gather  and  evaluate  software 
requirements  from  customers 
and  develop  functional  specifica¬ 
tions  for  program  modifications 
and  enhancements.  Code,  test, 
debug,  and  enhance  existing 
software.  Provide  technical  lead¬ 
ership  and  improve  team  effec¬ 
tiveness  through  training  and 
mentoring  junior  team  members 
in  technical  and  procedural 
methodology.  Requires  a 
Bachelor's  degree  in  Computer 
Science,  Management 

Information  Science, 

Engineering  or  a  related  field 
and  4  years  of  experience  in  a 
programming,  operations,  tech¬ 
nical  support  or  similar  position 
with  commercial  software  prod¬ 
ucts.  Must  also  have  experience 
programming  in  one  or  more  of 
the  following  languages:  Java, 
Jython,  Perl.  Must  be  able  to 
read  dumps  and  traces  for  the 
following  operating  systems  or 
subsystems:  Windows,  Linux,  or 
UNIX.  Send  resumes  to  Sterling 
Commerce  (America),  Inc.,  900 
Chelmsford  Street,  Attn.: 
Requisition  #1171V,  Lowell,  MA 
01851.  EOE. 


Software  Engineer  to  develop, 
support  &  enhance  software 
for  web  &  general  computer 
applications,  utilizing  ASP.Net, 
VB.Net,  Web  Services  &  N- 
Unit  testing.  Multiple  openings. 
Requires  Bach  degree  in 
Comp  Sci,  Eng,  Math  or  close¬ 
ly  related  field  or  educ  equiv  & 
2  yrs  exp  as  .Net  developer 
including  1  yr  exp  with  Web 
Services.  Resume  to:  R. 
Heinlein,  Ferguson  Consulting, 
1350  Timberlake  Manor  Pkwy, 
Suite  450,  St.  Louis,  MO 
63017.  EOE 


TECHNICAL  RECRUITER  (2 
Positions)  w/Bach  or  foreign 
equiv  in  Bus  Admin  or  Engg  &  1 
yr  exp  to  recruit  IT  consultants 
w/an  online-tracking  systm. 
Placement  of  applicants  on  a 
proactive  &  reactive  model. 
Recruit  for  Capital  Mkts,  specially 
fixed  income,  securities  lending  & 
credit  derivatives,  private  wealth 
mgmt.  Use  MS  Exchange,  HTML, 
Outlook  Express  &  Win  to  recruit 
consultants.  Use  Ace  for  detailed 
analysis  of  tech'l  skills.  Exp  prior 
to  completion  of  Bach  deg. 
acceptable.  Mail  res  to:  iNINE 
Technologies  LLC,  3 
Independence  Way,  Ste  #117, 
Princeton,  NJ  08540.  Job  Loc: 
Princeton,  NJ 


Software  engineer  to  design, 
develop  and  test  computer  pro¬ 
grams  for  business  applications; 
analyze  software  requirements 
to  determine  feasibility  of  design; 
direct  software  system  testing 
procedures.  Requirements: 
Associate's  Degree  or  educa¬ 
tional,  functional,  or  foreign 
equivalent  in  Engineering, 
Computer  Science, 

Management  Information 
Systems,  or  related  field. 
Working  Conditions:  8:00  A.M.  to 
5:00  P.M.,  40  hours/week, 

involves  extensive  travel  and  fre¬ 
quent  relocation.  Apply: 
Computer  Enterprises,  Inc., 
1910  Cochran  Rd,  Manor  Oak  II, 
Suite  230,  Pittsburgh,  PA  15220, 
Attn:  Johanna  Dausch,  Job  No 
072208. 


Scientific  Development  & 
Visualization  Lab  Mgr.  needed  to 
research  &  dvlp  image  process¬ 
ing  s/ware  &  h/ware  in  the  med¬ 
ical,  microscope  &  general 
image  processing  fields  incl 
bone  erosion  analysis  in  micro- 
CT  mice  data  using  image  seg¬ 
mentation  &  registration,  non- 
rigid  registration  of  kVCT  & 
MVCT  images,  de-convolution 
of  microscope  images,  OCR  on 
geographical  maps,  etc.  Mail 
resume  to:  MN  Supercomputing 
Inst.,  Attn:  A.  Nordling,  499 
Walter  Library,  117  Pleasant  St., 
Mpls,  MN  55455. _ 


Silicon  Soft  Solutions  seeks  soft¬ 
ware  engineers,  system  analysts, 
DBA  to  customize  application 
using  various  skills  (VB,  Java, 
Oracle,  C/C++/C#,  etc)  per  pro¬ 
ject  requirements.  Must  have  MS 
or  BS  with  experience.  Travel 
required.  Please  contact 
info@siliconsofts.com.  EOE. 

System/Programmer  analysts,  IT 
engineers  needed  by  E  IT  profes¬ 
sionals  to  design  applications  to 
meet  client's  requirements  using 
Java,  Oracle,  VB,  WebTech, 
Unix,  SQL,  SAP,  JSP,  J2EE,  etc. 
MS/BS  with  exp,  travel  required. 
Contact  pete@itprofs.net.  EOE. 
No  calls. 


South  Windsor,  CT  (Mult, 
pos.  avail.):  Peoplesoft 
Applications  Analyst, 
Programmer  Analyst, 
Software  Engineer  (4 
pos.).  Reply  to;  Credent 
Technologies,  LLC,  30 
Brookfield  Street,  Suite  A, 
South  Windsor,  CT  06074 


Software  engineer  to  design, 
develop  and  test  computer  pro¬ 
grams  for  business  applications; 
analyze  software  requirements  to 
determine  design  feasibility; 
direct  software  system  testing 
procedures.  Requirements: 
Bachelor’s  Degree,  educational 
or  functional  (3  yrs.  experienced 
yr.  college)  equivalent,  or  foreign 
equivalent  degree  with  combina¬ 
tion  of  educational  and/or  func¬ 
tional  equivalence  in  Engineer 
ing,  Comp.  Sc., ,  MIS,  Commerce 
or  related  field  and  2  years  expe¬ 
rience  as  software  engineer  or 
computer  programmer.  8  AM  to  5 
PM,  40  hrs/week,  involves  exten¬ 
sive  travel,  frequent  relocation. 
Apply:  Elite  Careers,  LLC,  1910 
Cochran  Rd.,  Manor  Oak  2,  Ste 
205,  Pittsburgh,  PA  15220,  Attn: 
Johanna  Dausch,  Job  No. 
061808. 


Technical  Recruiter  & 
Java  Project  Manager 
needed  at  unanticipated 
client  sites.  Mail  resume 
to;  Collabera,  Attn; 
Hireme,  25  Airport  Rd, 
Morristown,  NJ  07960. 


S4  Consultants  (Woodlands,  TX) 
seeks  software/hardware  engi¬ 
neers,  system  analysts,  DBAs  to 
customize  application  using  tools 
such  as  Oracle,  Java,  C/C++,  VB, 
SAP.  Min  MS  or  BS  with  1-5yr  IT 
exp.  Jobsite  various.  Send 
resumes  to  jobs@s4consul- 
tants.com.  EOE. 

VisionIT  (Detroit,  Ml)  seeks  Sr. 
Technical  Consultant/IT  Manager 
to  maintain  &  enhance 
PeopleSoft  Payroll/HR  systems 
using  PS-Code,  PeopleSoft, 
Oracle.  Minimum  MS  or  BS 
required  with  5-yr  IT  exp.  Email 
resumes  to  resumes@visionit- 
inc.com.  EOE 
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Looking  for 
something  new? 

You’ve  come  to  the 
right  place! 


Check  back  with  us  weekly 
for  fresh  listings  placed  by  top 
companies  looking  for  skilled 
professionals  like  youl 
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ucareers 


Co-Branded 

EMAIL 

BLASTS 


Reach  your  target  audience 
of  professional  IT  job  seek¬ 
ers  with  Computerworld’s 
Co-Branded  Email  Blasts. 
This  unique  program  allows 
you  to  choose  your  criteria 
of  100%  opt-in  subscribers 
by  geography,  company 
size,  job  title  and  industry. 

Call  Laura  Wilkinson  at 
800-762-2977  for  details! 

COMPUTERWORLD 


COMPUTERWORLD  AUGUST  11,  2008 


Shamank 

TRUE  TALES  OF  IT  LIFE  AS  TOLD  TO  SHARKY 


First  Thing  First 

Manufacturing  engineers 
at  this  plant  are  incredibly 
talented,  says  an  IT  pilot  fish 
working  there.  Trouble  is,  they 
think  they’re  good  at  every¬ 
thing.  So  when  a  computer- 
controlled  assembly  line  goes 
down  at  3  a.m.  with  a  network 
error,  engineers  begin  replac¬ 
ing  cables,  then  uninstalling 
and  reinstalling  software.  By 
noon,  it’s  still  not  working, 
and  they  call  in  an  old  IT  guy. 
“My  co-worker  listened  qui¬ 
etly,  then  thoughtfully  asked, 
‘Did  anyone  bother  to  reboot 
before  trying  to  run  new 
cables  or  install  software?’  ” 
says  fish.  “The  engineers’ 
faces  dropped  as  they  realized 
that  during  all  of  the  uninstalls 
and  reinstalls,  they  had  never 


rebooted  the  PC  running  the 
system.  One  of  the  engineers 
said  quietly,  ‘No.  That  can’t 
be  it.’  The  PC  was  rebooted, 
and  within  three  minutes,  the 
line  was  up  and  running.  My 
co-worker  then  simply  turned 
and  walked  off,  while  the  en¬ 
gineers  began  arguing  among 
themselves.” 

Um,  Thanks 

This  pilot  fish  is  an  account 
manager  at  an  IT  service  pro¬ 
vider,  and  he’s  pitching  virtual 
hosting  services  to  a  cus¬ 
tomer  with  the  help  of  a  newly 
hired  technical  consultant. 
Can  you  give  us  more  details 
about  your  virtual  hosting 
service?  customer  asks.  Fish 
turns  to  the  consultant,  who 
seems  oddly  nervous.  “Well,” 


consultant  replies,  “when 
. . .  uh . . .  when ...  we  host 
. . .  we . . .  customers  bring 
their  servers . . .  then  they’re 
placed  in  a  rack  in  our  col¬ 
location  center  and  then . . . 
we ...  uh ...  we  host  them.” 
Incredulous  customer  asks, 
“And  virtual  hosting?”  “Vir¬ 
tual  hosting  is  the  same  as 
regular  hosting,  with  the  only 
exception  being  that  the  cus¬ 
tomer  doesn’t  need  to  bring  in 
any  equipment,”  consultant 
says  confidently.  Reports  fish, 
“Needless  to  say,  I  went  back 
to  that  customer  a  week  later 
-  with  a  more  skilled  techni¬ 
cal  consultant.” 

Experience 

Applications  architect  pilot 
fish  is  working  with  a  young 
business  analyst  tasked  with 
laying  out  a  report  that  needs 
to  be  mainframe-compatible. 
What  format  should  it  be  in? 
analyst  asks  fish.  “Use  fixed- 
length  lines,  with  the  fields  in 
fixed-width  columns  using  a 
fixed-width  font  like  Courier,” 


fish  tells  her.  A  little  later,  fish 
sees  her  crafting  the  report 
layout  using  a  graphical  edit¬ 
ing  package.  “The  headers 
are  in  14-point  Courier,”  fish 
says.  “The  subheaders  are 
12  point.  The  report  detail  is 
10  point.  Each  field  is  entered 
as  a  separate  text  string, 
its  position  specified  by  an 
X/Y  pixel  offset.  I  suddenly 
realize  that  she  has  never 
seen  a  line  printer  or  used  a 
green-screen  terminal.  Her 
whole  experience  has  been  in 
a  proportional-font  GUI  world. 
I  feel  so  old.” 

■  Send  Sharky  a  tale  of 
your  true  IT  experiences  at 
sharky@computerworld.com. 
You’ll  snag  a  snazzy  Shark 
shirt  if  I  use  it. 


O  DO  YOU  LOVE  SHARK  TANK? 

Then  you  might  like  Shark  Bait,  too  ^ 

Dive  in  and  dish  the  dirt 

with  like-minded  IT  pros:  '  >'• 

sharkbait.computerworld.com. 

O  CHECK  OUT  Sharky’s  blog,  browse  the 
Sharkives  and  sign  up  for  Shark  Tank  home 
delivery  at  computerworld.com/sharky. 
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rrank  Hayes 

Wi-R  Warfare 


REMEMBER  WARCHALKING?  Circa  2002,  hackers 
used  to  ride  around  looking  for  unsecured  corpo¬ 
rate  Wi-Fi  signals.  When  they  found  one,  they’d  use 
chalk  to  mark  the  location  with  special  graffiti  that 
said,  in  effect,  “Hey,  look!  Free  Wi-Fi  here!” 

That’s  pretty  much  what  the  crooks  who  stole  40  million 
credit  card  numbers  did.  Just  without  the  chalk.  Or  the  charm. 


There  really  was  some¬ 
thing  charming  about 
warchalkers.  They  didn’t 
hide  their  Wi-Fi  hunt¬ 
ing;  they  advertised  it. 

For  savvy  IT  people,  that 
made  security  a  little  eas¬ 
ier.  A  warchalker’s  mark 
was  a  clear  warning  that 
someone  had  smuggled 
in  an  unauthorized  Wi¬ 
Fi  access  point.  Finding 
and  dealing  with  it  was 
easy,  once  we  knew  it 
was  there.  In  that  respect, 
warchalking  was  practi¬ 
cally  a  public  service. 

That’s  certainly  not 
how  anyone  would  de¬ 
scribe  the  work  of  the 
identity  thieves  whose 
indictments  were  an¬ 
nounced  last  week  in 
Boston,  San  Diego  and 
New  York  (see  story,  page 
6).  These  were  the  guys 
allegedly  behind  huge 
data  thefts  at  TJX,  Office¬ 
Max,  Barnes  &  Noble  and 
other  retailers. 

According  to  prosecu¬ 
tors,  the  thieves  hacked 
their  way  into  company 


networks,  installed 
network-sniffing  soft¬ 
ware  and  transferred 
large  quantities  of  credit 
card  information  to  their 
own  servers.  They  sold 
some  numbers  and  used 
others  to  manufacture 
phony  cards  of  their  own, 
which  they  used  at  ATMs 
to  steal  thousands  of  dol¬ 
lars  at  a  time. 

Understand,  these  are 
professional  criminals 
with  professional-grade 
tools  and  technical 
knowledge.  Once  they 
found  an  opening,  they 
used  custom  software  to 
capture  credit  card  num¬ 
bers  and  a  well-organized 
international  network  of 
contacts  to  sell  them. 

But  each  theft  report¬ 
edly  began  the  same  way: 

■  Sure,  this  ring 
of  identity  thieves 
has  been  identi¬ 
fied.  But  what  they 
did,  other  crooks 
can  do. 


with  the  thieves  driving 
around,  looking  for  unse¬ 
cured  Wi-Fi  signals. 

In  2003,  they  found  one 
at  a  BJ’s  Wholesale  Club. 
In  2004,  an  OfficeMax. 

In  2005,  a  Marshalls  de¬ 
partment  store,  which 
gave  them  access  to  the 
mother  lode:  Marshalls’ 
corporate  parent,  TJX. 

Along  the  way,  the 
thieves  also  found  their 
way  into  Barnes  &  Noble, 
Sports  Authority,  Boston 
Market  and  other  chains. 
The  crooks’  total  haul  is 
estimated  conservatively 
to  be  in  the  tens  of  mil¬ 
lions  of  dollars. 

And  none  of  it  would 
have  been  possible  with¬ 
out  unsecured  Wi-Fi  ac¬ 
cess  points. 

That  means  we’ve  got 
our  work  cut  out  for  us. 

Sure,  this  ring  of  iden¬ 
tity  thieves  has  been 
identified.  But  what  they 
did,  other  crooks  can  do. 

There’s  still  unsecured 
Wi-Fi  connected  to  most 
corporate  networks.  The 


situation  is  worst  for 
companies  like  restau¬ 
rants  and  retailers,  which 
have  lots  of  sites  and  not 
enough  IT  people  to  staff 
them  all.  But  anywhere 
there’s  a  network  port 
where  a  user  can  plug 
in  a  cheap,  store-bought 
access  point,  there’s  a  po¬ 
tential  problem. 

It’s  time  to  start  scour¬ 
ing  our  networks  for 
those  devices  again.  And 
the  way  to  do  it  is  the 
same  way  hackers  and 
crooks  would:  by  wan¬ 
dering  around  offices  and 
especially  remote  sites, 
looking  for  unsecured, 
unauthorized,  at-risk 
Wi-Fi  signals. 

Maybe  it  seems  like  an 
awfully  weak  reaction  to 
a  huge  threat.  But  in  prac¬ 
tice,  unsecured  Wi-Fi  hot 
spots  are  likely  the  big¬ 
gest  holes  in  our  security 
perimeter.  And  now  we 
know  from  experience  — 
the  experience  of  TJX, 
BJ’s,  OfficeMax  and  all 
the  rest  —  just  how  much 
of  a  risk  they  represent. 

After  all,  that’s  how  the 
crooks  got  in. 

There’s  unsecured 
Wi-Fi  out  there.  Last  time 
around,  the  warchalkers 
gave  us  warning. 

This  time,  we’ll  have  to 
handle  it  on  our  own.  ■ 
Frank  Hayes  is  Computer- 
world’s  senior  news 
columnist  Contact  him 
at  frank_hayes@ 
computerworld.com. 
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